US11321989B2 - Local cache-based identification system - Google Patents

Local cache-based identification system Download PDF

Info

Publication number
US11321989B2
US11321989B2 US16/679,529 US201916679529A US11321989B2 US 11321989 B2 US11321989 B2 US 11321989B2 US 201916679529 A US201916679529 A US 201916679529A US 11321989 B2 US11321989 B2 US 11321989B2
Authority
US
United States
Prior art keywords
identity
biometric
information
electronic device
identity information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active, expires
Application number
US16/679,529
Other versions
US20200211312A1 (en
Inventor
Rob Wisniewski
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Secure Identity LLC
Original Assignee
Alclear LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to US16/679,529 priority Critical patent/US11321989B2/en
Application filed by Alclear LLC filed Critical Alclear LLC
Assigned to ALCLEAR, LLC reassignment ALCLEAR, LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: Wisniewski, Rob
Assigned to JP MORGAN CHASE BANK, N.A. reassignment JP MORGAN CHASE BANK, N.A. SECURITY INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: ALCLEAR, LLC
Publication of US20200211312A1 publication Critical patent/US20200211312A1/en
Priority to US17/224,616 priority patent/US11436888B2/en
Priority to US17/704,314 priority patent/US11756364B2/en
Publication of US11321989B2 publication Critical patent/US11321989B2/en
Application granted granted Critical
Priority to US17/877,957 priority patent/US11756365B2/en
Priority to US18/223,764 priority patent/US20230360462A1/en
Priority to US18/380,793 priority patent/US20240046732A1/en
Assigned to SECURE IDENTITY, LLC reassignment SECURE IDENTITY, LLC ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: ALCLEAR, LLC
Active legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/357Cards having a plurality of specified features
    • G06Q20/3576Multiple memory zones on card
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/363Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes with the personal data of a user
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • G06Q20/3674Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes involving authentication
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/22Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder
    • G07C9/25Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder using biometric data, e.g. fingerprints, iris scans or voice recognition
    • G07C9/257Individual registration on entry or exit involving the use of a pass in combination with an identity check of the pass holder using biometric data, e.g. fingerprints, iris scans or voice recognition electronically
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/20Individual registration on entry or exit involving the use of a pass
    • G07C9/27Individual registration on entry or exit involving the use of a pass with central registration
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/30Individual registration on entry or exit not involving the use of a pass
    • G07C9/32Individual registration on entry or exit not involving the use of a pass in combination with an identity check
    • G07C9/37Individual registration on entry or exit not involving the use of a pass in combination with an identity check using biometric data, e.g. fingerprints, iris scans or voice recognition
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/30Individual registration on entry or exit not involving the use of a pass
    • G07C9/38Individual registration on entry or exit not involving the use of a pass with central registration

Definitions

  • the described embodiments relate generally to identification systems. More particularly, the present embodiments relate to identification systems that use a local cache for performing identifications.
  • Identity information may include a name, an address, entitlements (such as purchased tickets), financial information, and/or any other information associated with a person's identity.
  • a security kiosk may access identity information to determine a person's name as part of screening the person for entry into a secured area, such as an airport.
  • Such electronic devices may protect the identity information to restrict use of the identity information. For example, an electronic device may require login to an account associated with the identity information prior to taking any action that uses the identity information.
  • the identity information may be maintained and stored at the electronic device that uses the identity information. This enables the electronic device to perform actions using the identity information.
  • a central system maintains and stores the identity information and allows access to remote electronic devices. This enables multiple electronic devices to perform actions using the identity information.
  • An identity system device may store identity information and identification information.
  • One or more electronic devices may store a cache of a portion of the identity information and a part of the identification information.
  • Such an electronic device may allow controlled access to the cached identity information using the cached identification information.
  • the cached identification information may include cached biometric identification information.
  • the electronic device may receive user input, determine an identity by comparing the user input to the cached identification information, and perform an action using information in the cached identity information that is associated with the identity. In this way, the electronic device performs identifications locally without requiring communication with the identity system device but also uses the identity system device to centrally store and maintain the identity information and the identification information that is used to protect the identity information.
  • an identification system that uses a local cache for performing identifications includes an identity system device that stores identity information and biometric identification information and an electronic device that includes a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor.
  • the processor executes the instructions to receive from the identity system device, using the communication unit, an identity information cache that constitutes a portion of the identity information from the identity system device; receive from the identity system device, using the communication unit, a biometric identification information cache that constitutes a part of the biometric identification information; obtain a digital representation of a biometric via the biometric reader device; determine an identity by comparing the digital representation of the biometric to the biometric identification information cache; perform an action using information in the identity information cache that is associated with the identity; and transmit a notification to the identity system device, using the communication unit, to update based on the action a subset of the identity information associated with the identity.
  • the identity system device determines parameters for identities to cache, selects the portion of the identity information and the part of the biometric identification information according to the parameters, and transmits the portion of the identity information and the part of the biometric identification information to the electronic device.
  • the parameters include a list of ticket holders or a flight manifest.
  • the digital representation of the biometric is a first digital representation of a first biometric
  • the identity is a first identity
  • the processor obtains a second digital representation of a second biometric, determines the second digital representation of the second biometric does not have a match in the biometric identification information cache, and determines a second identity by transmitting the second digital representation of the second biometric to the identity system device.
  • the information is first information and the processor receives second information in the identity information that is associated with the second identity from the identity system device.
  • the processor deletes the digital representation of the biometric upon determining the identity.
  • a communication link between the electronic device and the identity system device is unavailable while the processor determines the identity.
  • an electronic device includes a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor.
  • the processor executes the instructions to cache identity information and biometric identification information received, using the communication unit, from an identity system device of an identification system that uses a local cache for performing identifications; obtain a digital representation of a biometric via the biometric reader device; determine an identity by comparing the digital representation of the biometric to the biometric identification information; and perform an action using a portion of the identity information that is associated with the identity.
  • the action includes allowing access.
  • the electronic device further includes an access control mechanism and the processor allows the access by controlling the access control mechanism.
  • the identity information includes a verified age. In various examples, the identity information includes payment information.
  • the biometric reader device includes at least one of a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera, an image sensor, a heart rhythm monitor or other biological sensor, or a microphone.
  • the digital representation of the biometric includes a digital representation of at least one of a fingerprint, a voiceprint, a facial image, a retina image, an iris image, a heart rhythm or other biological information, or a gait.
  • an electronic device includes a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor.
  • the processor executes the instructions to determine parameters for identities to cache; obtain identity information and biometric identification information, using the communication unit, that correspond to the parameters from an identity system device of an identification system that uses a local cache for performing identifications; store the identity information and the biometric identification information in the non-transitory storage medium; obtain a digital representation of a biometric via the biometric reader device; and determine an identity by comparing the digital representation of the biometric to the biometric identification information.
  • the processor performs an action using information in the identity information corresponding to the identity and deletes the identity information and the biometric identification information after performing the action.
  • the action includes allowing entrance based on a ticket and the processor updates a status of the ticket in the identity information based on the entrance.
  • the parameters include permitted entrants.
  • the electronic device is a component of a vehicle.
  • the parameters include permitted vehicle operators.
  • FIG. 1 depicts a first example identification system that uses a local cache for performing identifications.
  • FIG. 2 depicts a second example identification system that uses a local cache for performing identifications.
  • FIG. 3 depicts a flow chart illustrating a first example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 1 and/or 2 .
  • FIG. 4 depicts a flow chart illustrating an example method for local caching for performing identifications. This method may be performed by the systems of FIGS. 1 and/or 2 .
  • FIG. 5 depicts a third example identification system that uses a local cache for performing identifications.
  • FIG. 6 depicts a flow chart illustrating a second example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 5 .
  • FIG. 7 depicts a fourth example identification system that uses a local cache for performing identifications.
  • FIG. 8 depicts a flow chart illustrating a third example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 7 .
  • FIG. 9 depicts a fifth example identification system that uses a local cache for performing identifications.
  • FIG. 10 depicts a flow chart illustrating a fourth example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 9 .
  • FIG. 11 depicts a sixth example identification system that uses a local cache for performing identifications.
  • FIG. 12 depicts a flow chart illustrating a fifth example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 11 .
  • FIG. 13 depicts a seventh example identification system that uses a local cache for performing identifications.
  • FIG. 14 depicts a flow chart illustrating a sixth example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 13 .
  • Implementations where an electronic device maintains and stores identity information may not be very flexible as such implementations do not support multiple electronic devices using the identity information, particularly different kinds of electronic devices. Further, each electronic device may be configured with the identity information before use. This may be burdensome and complex, as well as multiplying storage requirements for the identity information. Each time a new electronic device is to use the identity information, the new electronic device is separately configured to use the identity information.
  • Implementations where a central system maintains and stores the identity information may support use of the identity information by multiple electronic devices and/or different kinds of electronic devices. This may be very flexible as new electronic devices communicate with the central system for identity information rather than requiring separate identity information configuration. However, electronic devices in such an arrangement may be unable to function if a communication link between the electronic device and the central system becomes unavailable. Further, the speed at which the electronic device operates may be dependent on the speed at which the electronic device may communicate with the central system.
  • An identity system device may store identity information and identification information.
  • One or more electronic devices may store a cache of a portion of the identity information and a part of the identification information. Such an electronic device may allow controlled access to the cached identity information using the cached identification information.
  • the cached identification information may include cached biometric identification information.
  • the electronic device may receive user input, determine an identity by comparing the user input to the cached identification information, and perform an action using information in the cached identity information that is associated with the identity. In this way, the electronic device performs identifications locally without requiring communication with the identity system device but also uses the identity system device to centrally store and maintain the identity information and the identification information that is used to protect the identity information.
  • the electronic device may update the identity information stored by the identity system device according to the action.
  • the portion of the identity information and the part of the identification information cached at an electronic device may be selected according to one or more parameters. Such parameters may be associated with the function of the electronic device, a location of the electronic device, a time period, and/or other factors.
  • the above may allow electronic devices to function even when communication between the electronic device and the identity system device is unavailable. This may also allow local use of centrally maintained information, free up the electronic devices from separately maintaining and storing the information, improve the speed of electronic device performance by making the performance independent of the speed of communication between electronic devices and the identity system device, and so on. This may also enable the electronic devices to perform functions not previously performable as the identity information may be updated based on actions performed by other electronic devices that affect the identity information.
  • FIGS. 1-14 These and other embodiments are discussed below with reference to FIGS. 1-14 . However, those skilled in the art will readily appreciate that the detailed description given herein with respect to these figures is for explanatory purposes only and should not be construed as limiting.
  • FIG. 1 depicts a first example identification system 100 that uses a local cache for performing identifications.
  • the identification system 100 may include one or more local electronic devices 101 (which may be located at one or more local locations 104 ) and one or more identity system devices 102 (which may be located at one or more remote locations 105 ).
  • the identity system device 102 may store and maintain identity information (e.g., information about a person such as name, address, financial information, social security number, phone number, previous actions by a person, and so on) and identification information (i.e., information that may be used to determine the identity of a person).
  • the local electronic device 101 may store a cached portion of the identity information and part of the identification information.
  • the local electronic device 101 may receive user input from a person 103 , determine an identity for the person 103 by comparing the user input to cached identification information, and perform an action using information in cached identity information that is associated with the identity of the person 103 . In this way, the local electronic device 101 may be able to perform identifications locally without requiring communication with the identity system device 102 .
  • the identification system 100 may use the identity system device 102 to centrally store and maintain the identity information and the identification information.
  • the local electronic device 101 may also update the identity information stored by the identity system device 102 according to the action, such as by transmitting one or more notifications regarding the action to the identity system device 102 .
  • These features may allow the local electronic device 101 to function even when communication between the local electronic device 101 and the identity system device 102 is unavailable. This may also allow local use of centrally maintained information, free up the local electronic device 101 from separately maintaining and storing the information, improve the speed of local electronic device 101 performance by making the performance independent of the speed of communication between local electronic device 101 and the identity system device 102 , and so on. This may also enable the local electronic device 101 to perform functions not previously performable as the identity information may be updated based on actions performed by other electronic devices that affect the identity information.
  • the identity information may include a name, an address, entitlements (such as purchased tickets), financial information, and/or any other information associated with a person's identity.
  • the local electronic device 101 may be a security kiosk that may access identity information to determine a person's name as part of screening the person for entry into a secured area, such as an event venue, a building, an airport, and so on.
  • the local electronic device 101 may be a point of sale device that may access identity information to determine a person's financial information as part of processing payment for a transaction.
  • the local electronic device 101 may be a ticket processing station at an event venue that that may access identity information to determine whether or not a person has a valid ticket for entrance.
  • the local electronic device 101 may be an age verification device that may access identity information to determine whether or not a person is of a threshold age, such as eighteen or twenty one.
  • a threshold age such as eighteen or twenty one.
  • the identification system 100 may protect the identity information by restricting access to the identity information.
  • the local electronic device 101 may include a biometric reader device (such as a fingerprint scanner, a camera and/or other 2D or 3D image capture device, a microphone, a heart rhythm monitor or other biological sensor, and so on) that is operable to obtain or receive a digital representation of a biometric (such as one or more hashes or other digital representations of one or more fingerprints, facial images, iris images, retina images, voiceprints, gaits, a heart rhythms or other biological information, and so on) from the person 103 and the cached identification information may include biometric data associated with identities corresponding to the cached identity information.
  • a biometric reader device such as a fingerprint scanner, a camera and/or other 2D or 3D image capture device, a microphone, a heart rhythm monitor or other biological sensor, and so on
  • a digital representation of a biometric such as one or more hashes or other digital representations of one or more fingerprints, facial images,
  • the local electronic device 101 may include one or more keyboards, touch screens, and/or other input/output devices and the person 103 may use such to provide login information for an account and the cached identification information may include account information.
  • the person 103 may use such to provide login information for an account and the cached identification information may include account information.
  • the cached identification information may include account information.
  • the identity information and the identification information cached by the local electronic device 101 may be cached in a variety of different ways.
  • the local electronic device 101 and/or the identity system device 102 may determine one or more parameters for identities to cache, obtain identity information and biometric identification information that corresponds to the parameters, and store the obtained identity information and biometric identification in the cache at the local electronic device 101 .
  • Such parameters may be associated with the function of the local electronic device 101 , the location 104 of the local electronic device 101 , a time period, and/or other factors.
  • the local electronic device 101 may be a ticket kiosk at an event venue and the parameters may include people who have a valid ticket for the event.
  • the local electronic device 101 may be an airport security station and the parameters may include people who have a flight at that airport and/or that terminal and/or that gate within twenty four hours.
  • the local electronic device 101 may be a point of sale device on a flight and the parameters may include a flight manifest of people scheduled to be on that flight.
  • the local electronic device 101 may be a vehicle and the parameters may include a list of people who are permitted to operate the vehicle.
  • the local electronic device 101 may be a grocery store checkout device and the parameters may include people who frequent that particular grocery store.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • One or more identity system devices 102 may use information obtained from one or more local electronic devices 101 in a variety of different ways.
  • a local electronic devices 102 A-D may be a security screening device at an airport.
  • An identity system device 102 may receive information such as determined identity, ticket data (such as flight numbers, gate numbers, terminal numbers, flight times, and so on) from such a security screening device and use such information to perform tasks, such as verifying that an identity is associated with a valid identification (such as a driver's license, passport, and so on), implementing a multiple lane screening system, and so on.
  • the identity system device 102 may use the information to adjust personnel and/or other resources to manage expected flow; create expedited lines based on which passengers are early, late, and so on; create expedited and/or other adjusted lines for staff as opposed to passengers; create different lines for differently levels of tickets, rewards or other loyalty programs, and so on; create different lines for different levels of security (such as routing trusted people to minimized screening lines and riskier people to additional screening lines, and so on); and so on.
  • the identity system device 102 (and/or the local electronic device 101 ) may use information from the local electronic devices 101 in a variety of different ways to perform various functions that might not otherwise be possible without such information.
  • the local electronic device 101 may be a local network of electronic devices.
  • a central server computing device at a stadium may cache information (such as identity information and/or identification information) from one or more identity system devices 102 and provide access to such cached information to one or more stations and/or other electronic devices at the stadium.
  • a server computing device on an aircraft may cache information (such as identity information and/or identification information) from one or more identity system devices 102 and provide access to such cached information to one or more stations and/or other electronic devices at individual passenger seats.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • the identity system device 102 may communicate with one or more third party databases and/or other electronic devices to obtain information to cache at a local electronic device 101 and/or to update with information obtained from a local electronic device 101 .
  • third party databases and/or other electronic devices may include one or more black lists (such as a federal no fly list), driver's license databases, criminal watch lists, payment processing systems, and/or any other kind of third party database and/or other electronic device.
  • FIG. 2 depicts a second example identification system 200 that uses a local cache for performing identifications.
  • the identification system 200 may include one or more local electronic devices 201 that are operable to communicate with one or more identity system devices 202 via one or more wired and/or wireless communication networks 230 .
  • the local electronic device 201 may include one or more processing units 210 or other processors or controllers, one or more communication units 211 , one or more non-transitory storage media 212 (which may take the form of, but is not limited to, a magnetic storage medium; optical storage medium; magneto-optical storage medium; read only memory; random access memory; erasable programmable memory; flash memory; and so on), one or more input/output components 213 (such as one or more keyboards; touch screens; mice; biometric reader devices like a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera and/or other 2D or 3D image capture device, an image sensor, a microphone, a heart rhythm monitor or other biological sensor, and/or any other device operative to obtain a digital representation of a biometric; and so on).
  • the identity system device 202 may include one or more processing units 220 or other processors or controllers, communication units 221 , non-transitory storage media 222 , and so on.
  • the identity system device 202 may store identity information 224 A and/or identification information 224 B in the storage medium 222 .
  • the identity information 224 A may be associated with the identification information 224 B.
  • the local electronic device 201 may store one or more caches 214 in the storage medium 212 .
  • the local electronic device 201 may store a portion of the identity information 224 A and/or a part of the identification information 224 B in the cache 214 .
  • the processing unit 210 of the local electronic device 201 may execute instructions stored in the storage medium 212 to perform various functions.
  • the functions may include communicating with the identity system device 202 via the network 230 using the communication unit 211 , storing information in the cache 214 , obtaining user input via the input/output component 213 , determining an identity by comparing user input to cached identification information, performing one or more actions using information in cached identity information, the various functions discussed above as performed by the local electronic device 101 of FIG. 1 , and so on.
  • the processing unit 220 of the identity system device 202 may execute instructions stored in the storage medium 222 to perform various functions.
  • the functions may include communicating with the local electronic device 201 via the network 230 using the communication unit 221 , storing and/or maintaining the identity information 224 A and/or the identification information 224 B the various functions discussed above as performed by the identity system device 102 of FIG. 1 , and so on.
  • the local electronic device 201 may be any kind of electronic device without departing from the scope of the present disclosure.
  • the local electronic device 201 may be a desktop computing device, a laptop computing device, a mobile computing device, a tablet computing device, a mobile telephone, a smart phone, a digital media player, a wearable device, a vehicle, a kitchen appliance, a point of sale terminal, a kiosk, and so on.
  • the identity system device 202 may be any kind of electronic device without departing from the scope of the present disclosure.
  • FIG. 3 depicts a flow chart illustrating a first example method 300 for using a local cache to perform identifications. This method 300 may be performed by the systems 100 , 200 of FIGS. 1 and/or 2 .
  • an electronic device may receive identification information.
  • the identification information may be any kind of information that may be used to determine an identity.
  • the identification information may be one or more digital representations of a biometric.
  • the identification information may be a login for an account.
  • the identification information may be a combination of the two.
  • the cached identification information may be a portion of identification information maintained and stored by an identity system device, such as a central identity information database. In such examples, the electronic device may generate the cached identification information by storing information received from the identity system device.
  • the electronic device may compare the identification information to cached identification information. For example, the electronic device may determine whether or not there is a match between the identification information and the cached identity information.
  • the cached identity information may be a portion of identity information maintained and stored by an identity system device, such as a central identity information database. In such examples, the electronic device may generate the cached identity information by storing information received from the identity system device.
  • the electronic device may determine whether or not an identity can be determined based on the comparison. If so, the flow may proceed to operation 340 . Otherwise, the flow may proceed to operation 350 where the electronic device may determine that an error has occurred.
  • the electronic device may use cached identity information associated with the identity.
  • the electronic device may use the cached identity information to perform one or more actions. For example, the electronic device may obtain a name stored in the cached identity information, determine an entitlement indicated in the cached identity information, allow entrance based on an entitlement indicated in the cached identity information, update an entitlement indicated in the cached identity information based on an action that the electronic device performs, verify an age indicated in the cached identity information, process a payment using financial information (such as a credit card, bank account number, rewards account, airline miles, a credit account created by the electronic device using information stored in the cached identity information, and so on) stored in the cached identity information, and so on.
  • financial information such as a credit card, bank account number, rewards account, airline miles, a credit account created by the electronic device using information stored in the cached identity information, and so on
  • example method 300 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
  • the method 300 is illustrated and described as the electronic device determining an error occurs if an identity cannot be determined based on the comparison between the identification information and cached identification information.
  • the electronic device may instead transmit the identification information to another device to determine the identity if the electronic device cannot determine the identity based on the comparison.
  • the electronic device may instead transmit the identification information to another device to determine the identity if the electronic device cannot determine the identity based on the comparison.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • this example method 300 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 101 , 201 of FIGS. 1 and/or 2 .
  • FIG. 4 depicts a flow chart illustrating an example method 400 for local caching for performing identifications. This method 400 may be performed by the systems 100 , 200 of FIGS. 1 and/or 2 .
  • an electronic device may determine parameters for identities to cache.
  • parameters may be associated with the function of an electronic device that will use the cache, the location of the electronic device that will use the cache, a time period, and/or other factors. For example, when creating a cache for a security kiosk at an airport, the parameters may include a list of flight manifests for all passengers with flights at that airport for the next day.
  • the electronic device may obtain identification information and identity information based on the parameters. For example, the electronic device may obtain a portion of identification information and identity information stored by an identity system device and/or a database maintained by the identity system device that satisfies the parameters.
  • the electronic device may cache the obtained identification information and identity information at an electronic device that will use the cache.
  • the electronic device may be the electronic device that will use the cache.
  • the electronic device may obtain the identification information and identity information and cache such.
  • the electronic device may be the identity system device.
  • the identity system device may obtain the identification information and identity information and transmit such to the electronic device that will use the cache for performing identifications.
  • example method 400 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
  • operation 420 is illustrated and described as obtaining the identification information and identity information.
  • the electronic device performing the method 400 may be an identity system device that maintains the identification information and identity information from which the identification information and identity information corresponding to the parameters is derived.
  • operation 420 may involve deriving the identification information and identity information corresponding to the parameters from the larger body of the identification information and identity information stored and maintained by the identity system device.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • this example method 400 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 101 , 201 of FIGS. 1 and/or 2 and/or the identity system device 102 , 202 of FIGS. 1 and/or 2 .
  • an identification system that uses a local cache for performing identifications may include an identity system device that stores identity information and biometric identification information and an electronic device that includes a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor.
  • the processor may execute the instructions to receive from the identity system device, using the communication unit, an identity information cache that constitutes a portion of the identity information from the identity system device; receive from the identity system device, using the communication unit, a biometric identification information cache that constitutes a part of the biometric identification information; obtain a digital representation of a biometric via the biometric reader device; determine an identity by comparing the digital representation of the biometric to the biometric identification information cache; perform an action using information in the identity information cache that is associated with the identity; and transmit a notification to the identity system device, using the communication unit, to update based on the action a subset of the identity information associated with the identity.
  • the identity system device may determine parameters for identities to cache, select the portion of the identity information and the part of the biometric identification information according to the parameters, and transmit the portion of the identity information and the part of the biometric identification information to the electronic device.
  • the parameters may include a list of ticket holders or a flight manifest.
  • the digital representation of the biometric may be a first digital representation of a first biometric
  • the identity may be a first identity
  • the processor may obtain a second digital representation of a second biometric, determine the second digital representation of the second biometric does not have a match in the biometric identification information cache, and determine a second identity by transmitting the second digital representation of the second biometric to the identity system device.
  • the information may be first information and the processor may receive second information in the identity information that is associated with the second identity from the identity system device.
  • the processor may delete the digital representation of the biometric upon determining the identity.
  • a communication link between the electronic device and the identity system device may be unavailable while the processor determines the identity.
  • an electronic device may include a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor.
  • the processor may execute the instructions to cache identity information and biometric identification information received, using the communication unit, from an identity system device of an identification system that uses a local cache for performing identifications; obtain a digital representation of a biometric via the biometric reader device; determine an identity by comparing the digital representation of the biometric to the biometric identification information; and perform an action using a portion of the identity information that is associated with the identity.
  • the action may include allowing access.
  • the electronic device further may include an access control mechanism and the processor may allow the access by controlling the access control mechanism.
  • the identity information may include a verified age. In various examples, the identity information may include payment information.
  • the biometric reader device may include at least one of a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera (and/or other 2D or 3D image capture device), an image sensor, a heart rhythm monitor or other biological sensor, or a microphone.
  • the digital representation of the biometric may include a digital representation of at least one of a fingerprint, a voiceprint, a facial image, a retina image, an iris image, a heart rhythm or other biological information, or a gait.
  • an electronic device may include a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor.
  • the processor may execute the instructions to determine parameters for identities to cache; obtain identity information and biometric identification information, using the communication unit, that correspond to the parameters from an identity system device of an identification system that uses a local cache for performing identifications; store the identity information and the biometric identification information in the non-transitory storage medium; obtain a digital representation of a biometric via the biometric reader device; and determine an identity by comparing the digital representation of the biometric to the biometric identification information.
  • the processor may perform an action using information in the identity information corresponding to the identity and delete the identity information and the biometric identification information after performing the action.
  • the action may include allowing entrance based on a ticket and the processor may update a status of the ticket in the identity information based on the entrance.
  • the parameters may include permitted entrants.
  • the electronic device may be a component of a vehicle.
  • the parameters may include permitted vehicle operators.
  • FIG. 5 depicts a third example identification system 500 that uses a local cache for performing identifications.
  • the identification system 500 may be a ticket station 501 at a venue that controls access based on whether or not a person 503 has a valid ticket for entrance.
  • the ticket station 501 may include a biometric reader device 513 and an access control mechanism 540 .
  • the ticket station 501 may obtain a digital representation of a biometric using the biometric reader device 513 , determine an identity by comparing the digital representation of the biometric to cached biometric identification information, and allow access by controlling the access control mechanism 540 if information in the cached identity information associated with the identity indicates that the person 503 has a valid ticket for entrance.
  • the biometric reader device 513 is illustrated as a camera and the access control mechanism 540 is illustrated as a gate arm.
  • the camera may obtain an image of the person's face, determine an identity by comparing the image to cached facial images, and control the gate arm to allow the person 503 inside if a valid ticket is associated with the identity.
  • the ticket station 501 may update the cached identity information to reflect the updated status of the ticket after use. For example, if the ticket is a single entry ticket, the ticket station 501 may change the status of the ticket to indicate that the ticket has been used.
  • the ticket station 501 may transmit a notification to an identity system device that maintains the identity information from which the cached identity information was obtained to update the status of the ticket. Such a notification may be transmitted when the ticket status is changed and/or at various times. For example, the ticket station 501 may transmit notifications to update periodically, such as once per hour, once per day, and so on. By way of another example, the ticket station 501 may transmit notifications to update upon establishing a communication link to the identity system device.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • FIG. 6 depicts a flow chart illustrating a second example method 600 for using a local cache to perform identifications. This method 600 may be performed by the systems 200 , 500 of FIGS. 2 and/or 5 .
  • an electronic device may obtain a digital representation of a biometric.
  • the digital representation of the biometric may be a digital representation of a fingerprint, a voiceprint, a facial image, a retina image, an iris image, a gait, a heart rhythm or other biological information, and so on.
  • the digital representation of the biometric may be obtained using one or more biometric reader devices, such as a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera, an image sensor, a microphone, a heart rhythm monitor or other biological sensor, and so on.
  • the electronic device may compare the digital representation of the biometric to cached biometric data.
  • the cached biometric data may be identification information stored by the electronic device that corresponds to cached identity information also stored by the electronic device.
  • the electronic device may determine whether or not the electronic device can determine an identity.
  • the electronic device may determine whether or not it can determine an identity based on whether or not the electronic device finds a match between the digital representation of the biometric and the cached biometric data, whether or not the electronic device has cached identity information associated with the cached biometric data that matches the digital representation of the biometric, and so on. If so, the flow proceeds to operation 640 . Otherwise, the flow proceeds to operation 670 where the electronic device may determine an error has occurred.
  • the electronic device may determine whether or not the identity information indicates that a valid ticket is associated with the identity. If so, the flow may proceed to operation 650 . Otherwise, the flow may proceed to operation 670 where the electronic device may determine an error has occurred.
  • the electronic device may allow access.
  • the electronic device may allow access by controlling an access control mechanism, such as a gate arm, a door, a turnstile, and/or any other device operable to control access.
  • the electronic device may update the ticket status. For example, the electronic device may update the cached identity information and/or transmit a notification to an identity system device indicating that the ticket has been used.
  • the update may also involve other information, such as a location where the ticket was used, a person who used the ticket, and/or other such information.
  • example method 600 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
  • the method 600 is illustrated and described as allowing access or not based on whether or not valid ticket information is indicated in cached identity information.
  • a rewards account may be indicated in the cached identity information that entitles the person to a free or discounted product or service based on use of the ticket.
  • the electronic device may automatically dispense the good or service, provide a voucher for the good or service, transmit a notification regarding the good or service (such as to a device that provides the good or service, to a mobile computing device carried by the person, and so on).
  • the cached identity information may indicate that the person has the option to upgrade to a higher ticket level (such as a box seat when the valid ticket was for general admission and so on) and the electronic device may prompt the person and/or transmit a notification regarding the option to upgrade.
  • the cached identity information may indicate that the person has configured default options in such a case and does not want to be bothered by upsells.
  • the electronic device may perform the upgrade and/or transmit notifications to accomplish the upgrade automatically according to the default options indicated in the cached identity information.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • this example method 600 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the ticket station 501 of FIG. 5 .
  • FIG. 7 depicts a fourth example identification system 700 that uses a local cache for performing identifications.
  • the identification system 700 may be an automated controlled access building 701 .
  • the automated controlled access building 701 may include a biometric reader device 713 and an access control mechanism 740 .
  • the automated controlled access building 701 may obtain a digital representation of a biometric using the biometric reader device 713 , determine an identity by comparing the digital representation of the biometric to cached biometric identification information, and allow access by controlling the access control mechanism 740 if information in cached identity information associated with the identity indicates that the person 703 has permission to enter the automated controlled access building 701 .
  • the biometric reader device 713 is illustrated as a fingerprint scanner and the access control mechanism 740 is illustrated as an automated door.
  • the fingerprint scanner may obtain an image of the person's fingerprint, determine an identity by comparing the image to cached fingerprint images, and control the automated door to allow the person 703 inside if the person 703 has permission to enter the automated controlled access building 701 .
  • FIG. 8 depicts a flow chart illustrating a third example method 800 for using a local cache to perform identifications. This method 800 may be performed by the systems 200 , 700 of FIGS. 2 and/or 7 .
  • an electronic device (such as the local electronic device 201 of FIG. 2 and/or the automated controlled access building 701 of FIG. 7 ) may obtain a fingerprint.
  • the electronic device may compare the fingerprint to stored fingerprint data that is associated with stored identity information.
  • the electronic device may determine whether or not an identity can be determined by matching the fingerprint to stored (or cached) fingerprint data that is associated with stored (or cached) identity information. If so, the flow may proceed to operation 840 . Otherwise, the flow proceeds to operation 870 .
  • the electronic device may determine whether or not stored identity information associated with the identity indicates to allow access. If so, the flow may proceed to operation 850 . Otherwise, the flow may proceed to operation 890 where the electronic device determines that an error has occurred.
  • the electronic device may allow access. Allowing access may include controlling an access control mechanism. The flow may then may proceed to operation 860 where the electronic device may delete the fingerprint.
  • the electronic device may contact a main gallery.
  • the main gallery may be fingerprint data and identity information stored and maintained by an identity system device from which the stored fingerprint data and stored identity information were derived. Contacting the main gallery may include transmitting a digital representation of the fingerprint, such as a hash or other representation.
  • the flow may then proceed to operation 880 where the electronic device determines whether or not a match is received from the main gallery. In the case of a match, the electronic device may receive an identity from the main gallery, identity information associated with the identity, and so on. If so, the flow may proceed to operation 840 . Otherwise, the flow proceeds to operation 890 where the electronic device may determine that an error has occurred.
  • example method 800 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
  • operation 860 is illustrated and described as deleting the fingerprint. This may protect the privacy of the fingerprint by not storing the fingerprint once the electronic device no longer needs the fingerprint. This may also reduce electronic device storage requirements. However, it is understood that this is an example. In other implementations, the electronic device may delete, erase, or otherwise flush a variety of other data as well (such as a portion of the stored fingerprint data and/or the stored identity information that corresponds to the fingerprint, data related to whether or not access was allowed, and so on). Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • this example method 800 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the automated controlled access building 701 of FIG. 7 .
  • FIG. 9 depicts a fifth example identification system 900 that uses a local cache for performing identifications.
  • the identification system 900 may be an individual point of sale device 901 on an airplane.
  • the individual point of sale device 901 may include a biometric reader device 913 .
  • a person 903 may use the individual point of sale device 901 to request goods and/or services, such as an alcoholic beverage.
  • the individual point of sale device 901 may obtain a digital representation of a biometric using the biometric reader device 913 , determine an identity by comparing the digital representation of the biometric to cached biometric identification information, and arrange for a request to be fulfilled or denied based on information in cached identity information associated with the identity.
  • the individual point of sale device 901 may cache identity information and biometric identification information for all of the passengers on a plane's flight manifest. As everyone on a plane should be on the plane's flight manifest, the individual point of sale device 901 may be able to minimize the amount of identity information and biometric identification information to be cached in order to operate.
  • the individual point of sale device 901 may then receive a request for an alcoholic beverage from the person 903 , use the biometric reader device 913 (shown as a camera that obtains a facial image, an iris image, a retina image, and so on) to obtain a digital representation of a biometric, identify the person 903 , determine a verified age for the person from the cached identity information associated with the person's identity, and arrange for the request to be fulfilled (such as by signaling cabin crew to fulfill the request, dispensing the alcoholic beverage, and so on) if the person's verified age meets a legal threshold (such as twenty one years of age, eighteen years of age, and so on) for the consumption of alcoholic beverages.
  • a legal threshold such as twenty one years of age, eighteen years of age, and so on
  • the individual point of sale device 901 may also determine payment information associated with the person's identity and process payment using the payment information. This may enable the individual point of sale device 901 to verify age and/or payment for requested alcoholic beverages during a flight even if the individual point of sale device 901 cannot currently communicate with a central database storing age and/or payment information.
  • one or more electronic devices on an aircraft or at another location may cache identification information and/or identity information for one or more pilots and/or other staff scheduled to use and/or work on the aircraft. Should a person report as staff whose identification information and/or identity information is not cached, additional security procedures may be performed to ensure the person is validly assigned to use and/or work on the aircraft.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • FIG. 10 depicts a flow chart illustrating a fourth example method 1000 for using a local cache to perform identifications. This method 1000 may be performed by the systems 200 , 900 of FIGS. 2 and/or 9 .
  • an electronic device (such as the local electronic device 201 of FIG. 2 and/or the individual point of sale device 901 of FIG. 9 ) may cache biometric data and identity information for a passenger list of a flight. The flow may then proceed to operation 1020 where the electronic device may determine whether or not a digital representation of a biometric is received. If not, the flow may return to operation 1020 where the electronic device again determines whether or not a digital representation of a biometric is received. Otherwise, the flow may proceed to operation 1030 .
  • the electronic device may use the digital representation of the biometric to determine an identity.
  • the flow may then proceed to operation 1040 where the electronic device determines whether or not information in the cached identity information associated with the identity indicates that the transaction is allowed (such as whether or not the cached identity information indicates that a verified age of the person meets or exceeds a threshold age for the transaction, whether or not payment information is available to use for the transaction, and so on). If not, the flow may proceed to operation 1080 where the electronic device determines that an error has occurred. Otherwise, the flow may proceed to operation 1050 .
  • the electronic device may determine to allow the transaction. The flow may then proceed to operation 1060 where the electronic device may process payment for the transaction. Next, the flow may proceed to operation 1070 where the electronic device may delete all of the biometric data and the identity information after the flight is complete.
  • example method 1000 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
  • the method 1000 is illustrated and described in the context of a flight. However, it is understood that this is an example. In various implementations, the method 1000 may be used in other contexts, such as a train trip, a bus ride, an assigned seat at an event venue, and so on. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • the method 1000 is illustrated and described as both determining whether or not the transaction is allowed and processing payment. However, it is understood that this is an example. In various implementations, one or more of these features may be performed without performing the other. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • this example method 1000 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the individual point of sale device 901 of FIG. 9 .
  • FIG. 11 depicts a sixth example identification system 1100 that uses a local cache for performing identifications.
  • the identification system 1100 may be a security screening device 1101 at an airport.
  • the security screening device 1101 may cache biometric identification information and identity information for all of the people who have flights scheduled for a period of time, such as two days, from an airport where the screening device is located.
  • the people who have flights scheduled for the time period may be determined using one or more flight manifests.
  • the security screening device 1101 may include a biometric reader device 1113 that the security screening device 1101 may use to obtain a digital representation of a biometric from a person 1103 .
  • the security screening device 1101 may determine an identity by comparing the digital representation of the biometric to cached biometric identification information and allow access if information in cached identity information associated with the identity indicates that the person 1103 has a ticket for a flight from the airport during the time period.
  • the security screening device 1101 may delete the digital representation of the biometric and/or the corresponding cached biometric identification information and/or identity information after the person 1103 is allowed access. This may minimize storage requirements for the security screening device 1101 as the person has already been allowed access.
  • the person 1103 may exit after having passed the security screening device 1101 prior to their flight and attempt to reenter.
  • the security screening device 1101 may have already deleted the biometric identification information and/or identity information corresponding to the person 1103 , the security screening device 1101 may fail to identify the person 1103 using the cached biometric identification information and/or identity information.
  • the security screening device 1101 may communicate with an identity system device from which the biometric identification information and/or identity information was originally cached to identify the person.
  • an identity system device from which the biometric identification information and/or identity information was originally cached to identify the person.
  • the security screening device 1101 may cache a portion of one or more third party databases and/or other electronic devices that relate to security screening.
  • the security screening device 1101 may cache a portion of a federal no fly database and/or other blacklist, criminal watch list, and so on.
  • the security screening device 1101 may cache the portion of such a third party database and/or other electronic device associated with all of the people who have flights scheduled for a period of time. In this way, the security screening device 1101 may be able to use the information from the third party database and/or other electronic device without actually currently communicating with the third party database and/or other electronic device.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • FIG. 12 depicts a flow chart illustrating a fifth example method 1200 for using a local cache to perform identifications. This method 1200 may be performed by the systems 200 , 1100 of FIGS. 2 and/or 11 .
  • an electronic device may cache biometric data and identity information based on one or more flight manifests. For example, biometric data and identity information for people who have flights from a particular airport within a particular time period may be cached using one or more flight manifests.
  • the electronic device may determine whether or not a digital representation of a biometric is received. If not, the flow may return to operation 1220 where the electronic device may again determine whether or not a digital representation of a biometric is received. Otherwise, the flow may proceed to operation 1230 .
  • the electronic device may determine whether or not there is a match between the digital representation of the biometric and cached biometric data and identity information. If not, the flow may proceed to operation 1260 where the electronic device may determine that an error has occurred. Otherwise the flow may proceed to operation 1240 .
  • the electronic device may allow access.
  • the flow may then proceed to operation 1250 where the electronic device may delete the digital representation of the biometric and the corresponding cached biometric data and the identity information.
  • example method 1200 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
  • operation 1250 illustrates and describes the electronic device deleting the digital representation of the biometric and the corresponding cached biometric data and the identity information.
  • the electronic device may omit deleting one or more of the digital representation of the biometric, the corresponding cached biometric data, and/or the corresponding identity information.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • this example method 1200 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the security screening device 1101 of FIG. 11 .
  • FIG. 13 depicts a seventh example identification system 1300 that uses a local cache for performing identifications.
  • the identification system 1300 may be a vehicle 1301 .
  • the vehicle 1301 may include a biometric reader device 1313 , which is illustrated as a microphone that obtains a voiceprint for a person 1303 .
  • the vehicle 1301 may obtain the voiceprint (and/or another digital representation of a biometric) using the biometric reader device 1313 (and/or other biometric reader device), determine an identity by comparing the voice print to cached biometric identification information, and allow operation of the vehicle 1301 if the person 1303 has permission to operate the vehicle 1301 as specified in identity information cached by the vehicle 1301 .
  • a group of people may have one or more sets of permissions with respect to operating the vehicle 1301 .
  • the vehicle 1301 may cache biometric identification information and identity information for each of the group of people.
  • the identity information may specify one or more configuration options for the vehicle 1301 for the person 1303 .
  • configuration options may include a seat position, vehicle temperature, entertainment system settings, control settings, time and/or location of permitted operation, and so on.
  • the vehicle 1301 may control one or more components according to the configuration options upon determining the identity.
  • FIG. 14 depicts a flow chart illustrating a sixth example method 1400 for using a local cache to perform identifications. This method 1400 may be performed by the systems 200 , 1300 of FIGS. 2 and/or 13 .
  • an electronic device (such as the local electronic device 201 of FIG. 2 and/or the vehicle 1301 of FIG. 13 ) operates.
  • the flow may proceed to operation 1402 where the electronic device determines whether or not a digital representation of a biometric is received. If not, the flow may proceed to operation 1401 where the electronic device continues to operate. Otherwise, the flow may proceed to operation 1403 .
  • the electronic device may determine whether or not the digital representation of the biometric matches cached biometric identification information. If so, the flow may proceed to operation 1404 . Otherwise, the flow may proceed to operation 1409 .
  • the electronic device may determine whether or not cached identity information associated with the matched cached biometric identification information indicates that use is authorized. If not, the flow may proceed to operation 1412 where the electronic device may determine that an error has occurred. Otherwise, the flow may proceed to operation 1405 .
  • the electronic device may allow use of the electronic device.
  • the flow may then proceed to operation 1406 where the electronic device may determine whether or not use is finished. If so, the flow may return to operation 1401 where the electronic device continues to operate. Otherwise, the flow may proceed to operation 1407 .
  • the electronic device may determine whether or not to update identity information based on the use.
  • the electronic device may update identity information when the use modifies the identity information.
  • the identity information may indicate that use of the electronic device is authorized when a person has not previously misused the electronic device (such as where the electronic device is a vehicle and misuse of the vehicle involves driving outside speed limits, not obeying traffic signals, striking other vehicles, and so on).
  • the electronic device may update the identity information to indicate that use is no longer authorized. If the electronic device determines to update the identity information, the flow may proceed to operation 1408 where the electronic device may update the identity information before the flow returns to operation 1405 . Otherwise, the flow may proceed directly to operation 1405 .
  • the electronic device may obtain identity information associated with digital representation of the biometric.
  • the electronic device may obtain the identity information by communicating with an identity service device.
  • the flow may then proceed to operation 1410 where the electronic device determines whether or not to cache the identity information and/or the digital representation of the biometric.
  • the electronic device may determine to cache the identity information and/or the digital representation of the biometric when the identity information indicates that the digital representation of the biometric is associated with a person who is a permitted user of the electronic device. If so, the flow may proceed to operation 1411 where the electronic device may cache the identity information and/or the digital representation of the biometric before the flow proceeds to operation 1404 . Otherwise, the flow may proceed directly to operation 1404 .
  • example method 1400 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
  • the method 1400 is illustrated and described as continuing to allow use after updating the identity information based on the use of the electronic device.
  • updating the identity information based on use of the electronic device may remove authorization to use the electronic device.
  • the electronic device may instead cease allowing operation.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • this example method 1400 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the vehicle 1301 of FIG. 13 .
  • the central system may include a number of electronic devices that operate in a cooperative computing arrangement to centrally store information.
  • one or more devices in the central system may receive updates from the local electronic devices and subsequently use the techniques disclosed herein to provide those updates to other devices in the central system, such as examples where devices are located in each time zone and communicate updates received from local electronic devices to devices in an adjacent time zone upon the occurrence of various conditions, such as hourly.
  • Various configurations are possible and contemplated without departing from the scope of the present disclosure.
  • An identity system device may store identity information and identification information.
  • One or more electronic devices may store a cache of a portion of the identity information and a part of the identification information.
  • Such an electronic device may allow controlled access to the cached identity information using the cached identification information.
  • the cached identification information may include cached biometric identification information.
  • the electronic device may receive user input, determine an identity by comparing the user input to the cached identification information, and perform an action using information in the cached identity information that is associated with the identity. In this way, the electronic device performs identifications locally without requiring communication with the identity system device but also uses the identity system device to centrally store and maintain the identity information and the identification information that is used to protect the identity information.
  • biometric and/or other personal data is owned by the person from whom such biometric and/or other personal data is derived. This data can be used to the benefit of those people.
  • biometric data may be used to conveniently and reliably identify and/or authenticate the identity of people, access securely stored financial and/or other information associated with the biometric data, and so on. This may allow people to avoid repeatedly providing physical identification and/or other information.
  • biometric and/or other personal data should comply with well-established privacy policies and/or privacy practices. Particularly, such entities should implement and consistently use privacy policies and practices that are generally recognized as meeting or exceeding industry or governmental requirements for maintaining security and privately maintaining biometric and/or other personal data, including the use of encryption and security methods that meets or exceeds industry or government standards. For example, biometric and/or other personal data should be collected for legitimate and reasonable uses and not shared or sold outside of those legitimate uses. Further, such collection should occur only after receiving the informed consent.
  • such entities should take any needed steps for safeguarding and securing access to such biometric and/or other personal data and ensuring that others with access to the biometric and/or other personal data adhere to the same privacy policies and practices. Further, such entities should certify their adherence to widely accepted privacy policies and practices by subjecting themselves to appropriate third party evaluation.
  • biometric and/or other personal data may block the use of, storage of, and/or access to biometric and/or other personal data. Entities who typically collect, analyze, store, and/or otherwise use such biometric and/or other personal data should implement and consistently prevent any collection, analysis, storage, and/or other use of any biometric and/or other personal data blocked by the person from whom such biometric and/or other personal data is derived.
  • the methods disclosed may be implemented as sets of instructions or software readable by a device. Further, it is understood that the specific order or hierarchy of steps in the methods disclosed are examples of sample approaches. In other embodiments, the specific order or hierarchy of steps in the method can be rearranged while remaining within the disclosed subject matter.
  • the accompanying method claims present elements of the various steps in a sample order, and are not necessarily meant to be limited to the specific order or hierarchy presented.
  • the described disclosure may be provided as a computer program product, or software, that may include a non-transitory machine-readable medium having stored thereon instructions, which may be used to program a computer system (or other electronic devices) to perform a process according to the present disclosure.
  • a non-transitory machine-readable medium includes any mechanism for storing information in a form (e.g., software, processing application) readable by a machine (e.g., a computer).
  • the non-transitory machine-readable medium may take the form of, but is not limited to, a magnetic storage medium (e.g., floppy diskette, video cassette, and so on); optical storage medium (e.g., CD-ROM); magneto-optical storage medium; read only memory (ROM); random access memory (RAM); erasable programmable memory (e.g., EPROM and EEPROM); flash memory; and so on.
  • a magnetic storage medium e.g., floppy diskette, video cassette, and so on
  • optical storage medium e.g., CD-ROM
  • magneto-optical storage medium e.g., magneto-optical storage medium
  • ROM read only memory
  • RAM random access memory
  • EPROM and EEPROM erasable programmable memory
  • flash memory and so on.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Finance (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Human Computer Interaction (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

An identification system uses a local cache for performing identifications. An identity system device may store identity information and identification information. An electronic device stores a cache of a portion of the identity information and a part of the identification information. The electronic device receives user input, determines an identity by comparing the user input to the cached identification information (such as by comparing a received digital representation of a biometric with cached biometric identification information), and performs an action using information in the cached identity information that is associated with the identity. The electronic device may update the identity information stored by the identity system device based on the action.

Description

CROSS-REFERENCE TO RELATED APPLICATION(S)
This application is a nonprovisional patent application of and claims the benefit of U.S. Provisional Patent Application No. 62/785,721, filed Dec. 28, 2018 and titled “Local Cache-Based Identification System,” the disclosure of which is hereby incorporated herein by reference in its entirety.
FIELD
The described embodiments relate generally to identification systems. More particularly, the present embodiments relate to identification systems that use a local cache for performing identifications.
BACKGROUND
Various electronic devices may use identity information for people to perform a number of different actions. Identity information may include a name, an address, entitlements (such as purchased tickets), financial information, and/or any other information associated with a person's identity. For example, a security kiosk may access identity information to determine a person's name as part of screening the person for entry into a secured area, such as an airport. Such electronic devices may protect the identity information to restrict use of the identity information. For example, an electronic device may require login to an account associated with the identity information prior to taking any action that uses the identity information.
In some situations, the identity information may be maintained and stored at the electronic device that uses the identity information. This enables the electronic device to perform actions using the identity information. In other situations, a central system maintains and stores the identity information and allows access to remote electronic devices. This enables multiple electronic devices to perform actions using the identity information.
SUMMARY
The present disclosure relates to an identification system that uses a local cache for performing identifications. An identity system device may store identity information and identification information. One or more electronic devices may store a cache of a portion of the identity information and a part of the identification information. Such an electronic device may allow controlled access to the cached identity information using the cached identification information. For example, the cached identification information may include cached biometric identification information. The electronic device may receive user input, determine an identity by comparing the user input to the cached identification information, and perform an action using information in the cached identity information that is associated with the identity. In this way, the electronic device performs identifications locally without requiring communication with the identity system device but also uses the identity system device to centrally store and maintain the identity information and the identification information that is used to protect the identity information.
In various embodiments, an identification system that uses a local cache for performing identifications includes an identity system device that stores identity information and biometric identification information and an electronic device that includes a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor. The processor executes the instructions to receive from the identity system device, using the communication unit, an identity information cache that constitutes a portion of the identity information from the identity system device; receive from the identity system device, using the communication unit, a biometric identification information cache that constitutes a part of the biometric identification information; obtain a digital representation of a biometric via the biometric reader device; determine an identity by comparing the digital representation of the biometric to the biometric identification information cache; perform an action using information in the identity information cache that is associated with the identity; and transmit a notification to the identity system device, using the communication unit, to update based on the action a subset of the identity information associated with the identity.
In some examples, the identity system device determines parameters for identities to cache, selects the portion of the identity information and the part of the biometric identification information according to the parameters, and transmits the portion of the identity information and the part of the biometric identification information to the electronic device. In some implementations of such examples, the parameters include a list of ticket holders or a flight manifest.
In various examples, the digital representation of the biometric is a first digital representation of a first biometric, the identity is a first identity, and the processor obtains a second digital representation of a second biometric, determines the second digital representation of the second biometric does not have a match in the biometric identification information cache, and determines a second identity by transmitting the second digital representation of the second biometric to the identity system device. In some implementations of such examples, the information is first information and the processor receives second information in the identity information that is associated with the second identity from the identity system device.
In some examples, the processor deletes the digital representation of the biometric upon determining the identity. In various examples, a communication link between the electronic device and the identity system device is unavailable while the processor determines the identity.
In some embodiments, an electronic device includes a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor. The processor executes the instructions to cache identity information and biometric identification information received, using the communication unit, from an identity system device of an identification system that uses a local cache for performing identifications; obtain a digital representation of a biometric via the biometric reader device; determine an identity by comparing the digital representation of the biometric to the biometric identification information; and perform an action using a portion of the identity information that is associated with the identity.
In various examples, the action includes allowing access. In some implementations of such examples, the electronic device further includes an access control mechanism and the processor allows the access by controlling the access control mechanism.
In some examples, the identity information includes a verified age. In various examples, the identity information includes payment information.
In various examples, the biometric reader device includes at least one of a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera, an image sensor, a heart rhythm monitor or other biological sensor, or a microphone. In some examples, the digital representation of the biometric includes a digital representation of at least one of a fingerprint, a voiceprint, a facial image, a retina image, an iris image, a heart rhythm or other biological information, or a gait.
In various embodiments, an electronic device includes a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor. The processor executes the instructions to determine parameters for identities to cache; obtain identity information and biometric identification information, using the communication unit, that correspond to the parameters from an identity system device of an identification system that uses a local cache for performing identifications; store the identity information and the biometric identification information in the non-transitory storage medium; obtain a digital representation of a biometric via the biometric reader device; and determine an identity by comparing the digital representation of the biometric to the biometric identification information.
In some examples, the processor performs an action using information in the identity information corresponding to the identity and deletes the identity information and the biometric identification information after performing the action. In some implementations of such examples, the action includes allowing entrance based on a ticket and the processor updates a status of the ticket in the identity information based on the entrance.
In various examples, the parameters include permitted entrants. In some examples, the electronic device is a component of a vehicle. In various implementations of such examples, the parameters include permitted vehicle operators.
BRIEF DESCRIPTION OF THE DRAWINGS
The disclosure will be readily understood by the following detailed description in conjunction with the accompanying drawings, wherein like reference numerals designate like structural elements.
FIG. 1 depicts a first example identification system that uses a local cache for performing identifications.
FIG. 2 depicts a second example identification system that uses a local cache for performing identifications.
FIG. 3 depicts a flow chart illustrating a first example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 1 and/or 2.
FIG. 4 depicts a flow chart illustrating an example method for local caching for performing identifications. This method may be performed by the systems of FIGS. 1 and/or 2.
FIG. 5 depicts a third example identification system that uses a local cache for performing identifications.
FIG. 6 depicts a flow chart illustrating a second example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 5.
FIG. 7 depicts a fourth example identification system that uses a local cache for performing identifications.
FIG. 8 depicts a flow chart illustrating a third example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 7.
FIG. 9 depicts a fifth example identification system that uses a local cache for performing identifications.
FIG. 10 depicts a flow chart illustrating a fourth example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 9.
FIG. 11 depicts a sixth example identification system that uses a local cache for performing identifications.
FIG. 12 depicts a flow chart illustrating a fifth example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 11.
FIG. 13 depicts a seventh example identification system that uses a local cache for performing identifications.
FIG. 14 depicts a flow chart illustrating a sixth example method for using a local cache to perform identifications. This method may be performed by the systems of FIGS. 2 and/or 13.
DETAILED DESCRIPTION
Reference will now be made in detail to representative embodiments illustrated in the accompanying drawings. It should be understood that the following descriptions are not intended to limit the embodiments to one preferred embodiment. To the contrary, it is intended to cover alternatives, modifications, and equivalents as can be included within the spirit and scope of the described embodiments as defined by the appended claims.
The description that follows includes sample systems, methods, and computer program products that embody various elements of the present disclosure. However, it should be understood that the described disclosure may be practiced in a variety of forms in addition to those described herein.
Implementations where an electronic device maintains and stores identity information may not be very flexible as such implementations do not support multiple electronic devices using the identity information, particularly different kinds of electronic devices. Further, each electronic device may be configured with the identity information before use. This may be burdensome and complex, as well as multiplying storage requirements for the identity information. Each time a new electronic device is to use the identity information, the new electronic device is separately configured to use the identity information.
Implementations where a central system maintains and stores the identity information may support use of the identity information by multiple electronic devices and/or different kinds of electronic devices. This may be very flexible as new electronic devices communicate with the central system for identity information rather than requiring separate identity information configuration. However, electronic devices in such an arrangement may be unable to function if a communication link between the electronic device and the central system becomes unavailable. Further, the speed at which the electronic device operates may be dependent on the speed at which the electronic device may communicate with the central system.
The following disclosure relates to an identification system that uses a local cache for performing identifications. An identity system device may store identity information and identification information. One or more electronic devices may store a cache of a portion of the identity information and a part of the identification information. Such an electronic device may allow controlled access to the cached identity information using the cached identification information. For example, the cached identification information may include cached biometric identification information. The electronic device may receive user input, determine an identity by comparing the user input to the cached identification information, and perform an action using information in the cached identity information that is associated with the identity. In this way, the electronic device performs identifications locally without requiring communication with the identity system device but also uses the identity system device to centrally store and maintain the identity information and the identification information that is used to protect the identity information.
In some implementations, the electronic device may update the identity information stored by the identity system device according to the action. In various implementations, the portion of the identity information and the part of the identification information cached at an electronic device may be selected according to one or more parameters. Such parameters may be associated with the function of the electronic device, a location of the electronic device, a time period, and/or other factors.
The above may allow electronic devices to function even when communication between the electronic device and the identity system device is unavailable. This may also allow local use of centrally maintained information, free up the electronic devices from separately maintaining and storing the information, improve the speed of electronic device performance by making the performance independent of the speed of communication between electronic devices and the identity system device, and so on. This may also enable the electronic devices to perform functions not previously performable as the identity information may be updated based on actions performed by other electronic devices that affect the identity information.
These and other embodiments are discussed below with reference to FIGS. 1-14. However, those skilled in the art will readily appreciate that the detailed description given herein with respect to these figures is for explanatory purposes only and should not be construed as limiting.
FIG. 1 depicts a first example identification system 100 that uses a local cache for performing identifications. The identification system 100 may include one or more local electronic devices 101 (which may be located at one or more local locations 104) and one or more identity system devices 102 (which may be located at one or more remote locations 105). The identity system device 102 may store and maintain identity information (e.g., information about a person such as name, address, financial information, social security number, phone number, previous actions by a person, and so on) and identification information (i.e., information that may be used to determine the identity of a person). The local electronic device 101 may store a cached portion of the identity information and part of the identification information. The local electronic device 101 may receive user input from a person 103, determine an identity for the person 103 by comparing the user input to cached identification information, and perform an action using information in cached identity information that is associated with the identity of the person 103. In this way, the local electronic device 101 may be able to perform identifications locally without requiring communication with the identity system device 102. At the same time, the identification system 100 may use the identity system device 102 to centrally store and maintain the identity information and the identification information. In some implementations, the local electronic device 101 may also update the identity information stored by the identity system device 102 according to the action, such as by transmitting one or more notifications regarding the action to the identity system device 102.
These features may allow the local electronic device 101 to function even when communication between the local electronic device 101 and the identity system device 102 is unavailable. This may also allow local use of centrally maintained information, free up the local electronic device 101 from separately maintaining and storing the information, improve the speed of local electronic device 101 performance by making the performance independent of the speed of communication between local electronic device 101 and the identity system device 102, and so on. This may also enable the local electronic device 101 to perform functions not previously performable as the identity information may be updated based on actions performed by other electronic devices that affect the identity information.
The identity information may include a name, an address, entitlements (such as purchased tickets), financial information, and/or any other information associated with a person's identity. For example, the local electronic device 101 may be a security kiosk that may access identity information to determine a person's name as part of screening the person for entry into a secured area, such as an event venue, a building, an airport, and so on. By way of another example, the local electronic device 101 may be a point of sale device that may access identity information to determine a person's financial information as part of processing payment for a transaction. In yet another example, the local electronic device 101 may be a ticket processing station at an event venue that that may access identity information to determine whether or not a person has a valid ticket for entrance. In still another example, the local electronic device 101 may be an age verification device that may access identity information to determine whether or not a person is of a threshold age, such as eighteen or twenty one. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
By allowing use of identity information upon receipt of user input that matches associated identification information, the identification system 100 may protect the identity information by restricting access to the identity information. For example, the local electronic device 101 may include a biometric reader device (such as a fingerprint scanner, a camera and/or other 2D or 3D image capture device, a microphone, a heart rhythm monitor or other biological sensor, and so on) that is operable to obtain or receive a digital representation of a biometric (such as one or more hashes or other digital representations of one or more fingerprints, facial images, iris images, retina images, voiceprints, gaits, a heart rhythms or other biological information, and so on) from the person 103 and the cached identification information may include biometric data associated with identities corresponding to the cached identity information. By way of another example, the local electronic device 101 may include one or more keyboards, touch screens, and/or other input/output devices and the person 103 may use such to provide login information for an account and the cached identification information may include account information. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
The identity information and the identification information cached by the local electronic device 101 may be cached in a variety of different ways. In some implementations, the local electronic device 101 and/or the identity system device 102 may determine one or more parameters for identities to cache, obtain identity information and biometric identification information that corresponds to the parameters, and store the obtained identity information and biometric identification in the cache at the local electronic device 101. Such parameters may be associated with the function of the local electronic device 101, the location 104 of the local electronic device 101, a time period, and/or other factors. For example, the local electronic device 101 may be a ticket kiosk at an event venue and the parameters may include people who have a valid ticket for the event. By way of another example, the local electronic device 101 may be an airport security station and the parameters may include people who have a flight at that airport and/or that terminal and/or that gate within twenty four hours. In yet another example, the local electronic device 101 may be a point of sale device on a flight and the parameters may include a flight manifest of people scheduled to be on that flight. By way of another example, the local electronic device 101 may be a vehicle and the parameters may include a list of people who are permitted to operate the vehicle. In still another example, the local electronic device 101 may be a grocery store checkout device and the parameters may include people who frequent that particular grocery store. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
One or more identity system devices 102 may use information obtained from one or more local electronic devices 101 in a variety of different ways. For example, in some implementations, a local electronic devices 102A-D may be a security screening device at an airport. An identity system device 102 may receive information such as determined identity, ticket data (such as flight numbers, gate numbers, terminal numbers, flight times, and so on) from such a security screening device and use such information to perform tasks, such as verifying that an identity is associated with a valid identification (such as a driver's license, passport, and so on), implementing a multiple lane screening system, and so on. For example, the identity system device 102 may use the information to adjust personnel and/or other resources to manage expected flow; create expedited lines based on which passengers are early, late, and so on; create expedited and/or other adjusted lines for staff as opposed to passengers; create different lines for differently levels of tickets, rewards or other loyalty programs, and so on; create different lines for different levels of security (such as routing trusted people to minimized screening lines and riskier people to additional screening lines, and so on); and so on. The identity system device 102 (and/or the local electronic device 101) may use information from the local electronic devices 101 in a variety of different ways to perform various functions that might not otherwise be possible without such information.
Additionally, although this example is provided in the context of airport security, it is understood that this is an example. Such techniques may be performed in other contexts (such as in the context of a stadium or other event venue, vehicle, and so on) without departing from the scope of the present disclosure. Various configurations are possible and contemplated.
Although the above illustrates and describes caching information (such as identity information and/or identification information) at a local electronic device 101, this an similar examples below are simplified examples for the purposes of clarity. In various implementations, the local electronic device 101 may be a local network of electronic devices. For example, a central server computing device at a stadium may cache information (such as identity information and/or identification information) from one or more identity system devices 102 and provide access to such cached information to one or more stations and/or other electronic devices at the stadium. By way of another example, a server computing device on an aircraft may cache information (such as identity information and/or identification information) from one or more identity system devices 102 and provide access to such cached information to one or more stations and/or other electronic devices at individual passenger seats. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
Further, although the above illustrates and describes one or more identity system devices 102 caching information (such as identity information and/or identification information) at a local electronic device 101, this an similar examples below are simplified examples for the purposes of clarity. In various implementations, the identity system device 102 may communicate with one or more third party databases and/or other electronic devices to obtain information to cache at a local electronic device 101 and/or to update with information obtained from a local electronic device 101. Such third party databases and/or other electronic devices may include one or more black lists (such as a federal no fly list), driver's license databases, criminal watch lists, payment processing systems, and/or any other kind of third party database and/or other electronic device. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
FIG. 2 depicts a second example identification system 200 that uses a local cache for performing identifications. The identification system 200 may include one or more local electronic devices 201 that are operable to communicate with one or more identity system devices 202 via one or more wired and/or wireless communication networks 230.
The local electronic device 201 may include one or more processing units 210 or other processors or controllers, one or more communication units 211, one or more non-transitory storage media 212 (which may take the form of, but is not limited to, a magnetic storage medium; optical storage medium; magneto-optical storage medium; read only memory; random access memory; erasable programmable memory; flash memory; and so on), one or more input/output components 213 (such as one or more keyboards; touch screens; mice; biometric reader devices like a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera and/or other 2D or 3D image capture device, an image sensor, a microphone, a heart rhythm monitor or other biological sensor, and/or any other device operative to obtain a digital representation of a biometric; and so on). Similarly, the identity system device 202 may include one or more processing units 220 or other processors or controllers, communication units 221, non-transitory storage media 222, and so on.
The identity system device 202 may store identity information 224A and/or identification information 224B in the storage medium 222. The identity information 224A may be associated with the identification information 224B. The local electronic device 201 may store one or more caches 214 in the storage medium 212. The local electronic device 201 may store a portion of the identity information 224A and/or a part of the identification information 224B in the cache 214.
The processing unit 210 of the local electronic device 201 may execute instructions stored in the storage medium 212 to perform various functions. For example, the functions may include communicating with the identity system device 202 via the network 230 using the communication unit 211, storing information in the cache 214, obtaining user input via the input/output component 213, determining an identity by comparing user input to cached identification information, performing one or more actions using information in cached identity information, the various functions discussed above as performed by the local electronic device 101 of FIG. 1, and so on. Similarly, the processing unit 220 of the identity system device 202 may execute instructions stored in the storage medium 222 to perform various functions. For example, the functions may include communicating with the local electronic device 201 via the network 230 using the communication unit 221, storing and/or maintaining the identity information 224A and/or the identification information 224B the various functions discussed above as performed by the identity system device 102 of FIG. 1, and so on.
The local electronic device 201 may be any kind of electronic device without departing from the scope of the present disclosure. For example, the local electronic device 201 may be a desktop computing device, a laptop computing device, a mobile computing device, a tablet computing device, a mobile telephone, a smart phone, a digital media player, a wearable device, a vehicle, a kitchen appliance, a point of sale terminal, a kiosk, and so on. Similarly, the identity system device 202 may be any kind of electronic device without departing from the scope of the present disclosure.
FIG. 3 depicts a flow chart illustrating a first example method 300 for using a local cache to perform identifications. This method 300 may be performed by the systems 100, 200 of FIGS. 1 and/or 2.
At operation 310, an electronic device (such as the local electronic device 101, 201 of FIGS. 1 and/or 2) may receive identification information. The identification information may be any kind of information that may be used to determine an identity. For example, the identification information may be one or more digital representations of a biometric. In another example, the identification information may be a login for an account. In still other implementations, the identification information may be a combination of the two. Various configurations are possible and contemplated without departing from the scope of the present disclosure. In some examples, the cached identification information may be a portion of identification information maintained and stored by an identity system device, such as a central identity information database. In such examples, the electronic device may generate the cached identification information by storing information received from the identity system device.
At operation 320, the electronic device may compare the identification information to cached identification information. For example, the electronic device may determine whether or not there is a match between the identification information and the cached identity information. In some examples, the cached identity information may be a portion of identity information maintained and stored by an identity system device, such as a central identity information database. In such examples, the electronic device may generate the cached identity information by storing information received from the identity system device.
At operation 330, the electronic device may determine whether or not an identity can be determined based on the comparison. If so, the flow may proceed to operation 340. Otherwise, the flow may proceed to operation 350 where the electronic device may determine that an error has occurred.
At operation 340, after the electronic device determines an identity based on the comparison between the identification information to the cached identification information, the electronic device may use cached identity information associated with the identity. The electronic device may use the cached identity information to perform one or more actions. For example, the electronic device may obtain a name stored in the cached identity information, determine an entitlement indicated in the cached identity information, allow entrance based on an entitlement indicated in the cached identity information, update an entitlement indicated in the cached identity information based on an action that the electronic device performs, verify an age indicated in the cached identity information, process a payment using financial information (such as a credit card, bank account number, rewards account, airline miles, a credit account created by the electronic device using information stored in the cached identity information, and so on) stored in the cached identity information, and so on.
Although the example method 300 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
For example, the method 300 is illustrated and described as the electronic device determining an error occurs if an identity cannot be determined based on the comparison between the identification information and cached identification information. However, it is understood that this is an example. In some implementations, the electronic device may instead transmit the identification information to another device to determine the identity if the electronic device cannot determine the identity based on the comparison. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
In various examples, this example method 300 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 101, 201 of FIGS. 1 and/or 2.
FIG. 4 depicts a flow chart illustrating an example method 400 for local caching for performing identifications. This method 400 may be performed by the systems 100, 200 of FIGS. 1 and/or 2.
At operation 410, an electronic device (such as the local electronic device 101, 201 of FIGS. 1 and/or 2 and/or the identity system device 102, 202 of FIGS. 1 and/or 2) may determine parameters for identities to cache. Such parameters may be associated with the function of an electronic device that will use the cache, the location of the electronic device that will use the cache, a time period, and/or other factors. For example, when creating a cache for a security kiosk at an airport, the parameters may include a list of flight manifests for all passengers with flights at that airport for the next day.
At operation 420, the electronic device may obtain identification information and identity information based on the parameters. For example, the electronic device may obtain a portion of identification information and identity information stored by an identity system device and/or a database maintained by the identity system device that satisfies the parameters.
At operation 430, the electronic device may cache the obtained identification information and identity information at an electronic device that will use the cache. For example, the electronic device may be the electronic device that will use the cache. In such an example, the electronic device may obtain the identification information and identity information and cache such. In another example, the electronic device may be the identity system device. In such an example, the identity system device may obtain the identification information and identity information and transmit such to the electronic device that will use the cache for performing identifications.
Although the example method 400 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
For example, operation 420 is illustrated and described as obtaining the identification information and identity information. However, in some implementations, the electronic device performing the method 400 may be an identity system device that maintains the identification information and identity information from which the identification information and identity information corresponding to the parameters is derived. In such an example, operation 420 may involve deriving the identification information and identity information corresponding to the parameters from the larger body of the identification information and identity information stored and maintained by the identity system device. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
In various examples, this example method 400 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 101, 201 of FIGS. 1 and/or 2 and/or the identity system device 102, 202 of FIGS. 1 and/or 2.
In various implementations, an identification system that uses a local cache for performing identifications may include an identity system device that stores identity information and biometric identification information and an electronic device that includes a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor. The processor may execute the instructions to receive from the identity system device, using the communication unit, an identity information cache that constitutes a portion of the identity information from the identity system device; receive from the identity system device, using the communication unit, a biometric identification information cache that constitutes a part of the biometric identification information; obtain a digital representation of a biometric via the biometric reader device; determine an identity by comparing the digital representation of the biometric to the biometric identification information cache; perform an action using information in the identity information cache that is associated with the identity; and transmit a notification to the identity system device, using the communication unit, to update based on the action a subset of the identity information associated with the identity.
In some examples, the identity system device may determine parameters for identities to cache, select the portion of the identity information and the part of the biometric identification information according to the parameters, and transmit the portion of the identity information and the part of the biometric identification information to the electronic device. In some such examples, the parameters may include a list of ticket holders or a flight manifest.
In various examples, the digital representation of the biometric may be a first digital representation of a first biometric, the identity may be a first identity, and the processor may obtain a second digital representation of a second biometric, determine the second digital representation of the second biometric does not have a match in the biometric identification information cache, and determine a second identity by transmitting the second digital representation of the second biometric to the identity system device. In some such examples, the information may be first information and the processor may receive second information in the identity information that is associated with the second identity from the identity system device.
In some examples, the processor may delete the digital representation of the biometric upon determining the identity. In various examples, a communication link between the electronic device and the identity system device may be unavailable while the processor determines the identity.
In some implementations, an electronic device may include a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor. The processor may execute the instructions to cache identity information and biometric identification information received, using the communication unit, from an identity system device of an identification system that uses a local cache for performing identifications; obtain a digital representation of a biometric via the biometric reader device; determine an identity by comparing the digital representation of the biometric to the biometric identification information; and perform an action using a portion of the identity information that is associated with the identity.
In various examples, the action may include allowing access. In some such examples, the electronic device further may include an access control mechanism and the processor may allow the access by controlling the access control mechanism.
In some examples, the identity information may include a verified age. In various examples, the identity information may include payment information.
In various examples, the biometric reader device may include at least one of a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera (and/or other 2D or 3D image capture device), an image sensor, a heart rhythm monitor or other biological sensor, or a microphone. In some examples, the digital representation of the biometric may include a digital representation of at least one of a fingerprint, a voiceprint, a facial image, a retina image, an iris image, a heart rhythm or other biological information, or a gait.
In various implementations, an electronic device may include a biometric reader device, a communication unit, a non-transitory storage medium that stores instructions, and a processor. The processor may execute the instructions to determine parameters for identities to cache; obtain identity information and biometric identification information, using the communication unit, that correspond to the parameters from an identity system device of an identification system that uses a local cache for performing identifications; store the identity information and the biometric identification information in the non-transitory storage medium; obtain a digital representation of a biometric via the biometric reader device; and determine an identity by comparing the digital representation of the biometric to the biometric identification information.
In some examples, the processor may perform an action using information in the identity information corresponding to the identity and delete the identity information and the biometric identification information after performing the action. In some such examples, the action may include allowing entrance based on a ticket and the processor may update a status of the ticket in the identity information based on the entrance.
In various examples, the parameters may include permitted entrants. In some examples, the electronic device may be a component of a vehicle. In various such examples, the parameters may include permitted vehicle operators.
FIG. 5 depicts a third example identification system 500 that uses a local cache for performing identifications. In this example, the identification system 500 may be a ticket station 501 at a venue that controls access based on whether or not a person 503 has a valid ticket for entrance. The ticket station 501 may include a biometric reader device 513 and an access control mechanism 540. The ticket station 501 may obtain a digital representation of a biometric using the biometric reader device 513, determine an identity by comparing the digital representation of the biometric to cached biometric identification information, and allow access by controlling the access control mechanism 540 if information in the cached identity information associated with the identity indicates that the person 503 has a valid ticket for entrance.
For example, the biometric reader device 513 is illustrated as a camera and the access control mechanism 540 is illustrated as a gate arm. The camera may obtain an image of the person's face, determine an identity by comparing the image to cached facial images, and control the gate arm to allow the person 503 inside if a valid ticket is associated with the identity.
In some implementations, the ticket station 501 may update the cached identity information to reflect the updated status of the ticket after use. For example, if the ticket is a single entry ticket, the ticket station 501 may change the status of the ticket to indicate that the ticket has been used.
In various implementations, the ticket station 501 may transmit a notification to an identity system device that maintains the identity information from which the cached identity information was obtained to update the status of the ticket. Such a notification may be transmitted when the ticket status is changed and/or at various times. For example, the ticket station 501 may transmit notifications to update periodically, such as once per hour, once per day, and so on. By way of another example, the ticket station 501 may transmit notifications to update upon establishing a communication link to the identity system device. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
FIG. 6 depicts a flow chart illustrating a second example method 600 for using a local cache to perform identifications. This method 600 may be performed by the systems 200, 500 of FIGS. 2 and/or 5.
At operation 610, an electronic device (such as the local electronic device 201 of FIG. 2 and/or the ticket station 501 of FIG. 5) may obtain a digital representation of a biometric. The digital representation of the biometric may be a digital representation of a fingerprint, a voiceprint, a facial image, a retina image, an iris image, a gait, a heart rhythm or other biological information, and so on. The digital representation of the biometric may be obtained using one or more biometric reader devices, such as a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera, an image sensor, a microphone, a heart rhythm monitor or other biological sensor, and so on.
At operation 620, the electronic device may compare the digital representation of the biometric to cached biometric data. For example, the cached biometric data may be identification information stored by the electronic device that corresponds to cached identity information also stored by the electronic device.
At operation 630, the electronic device may determine whether or not the electronic device can determine an identity. The electronic device may determine whether or not it can determine an identity based on whether or not the electronic device finds a match between the digital representation of the biometric and the cached biometric data, whether or not the electronic device has cached identity information associated with the cached biometric data that matches the digital representation of the biometric, and so on. If so, the flow proceeds to operation 640. Otherwise, the flow proceeds to operation 670 where the electronic device may determine an error has occurred.
At operation 640, after the electronic device determines the identity, the electronic device may determine whether or not the identity information indicates that a valid ticket is associated with the identity. If so, the flow may proceed to operation 650. Otherwise, the flow may proceed to operation 670 where the electronic device may determine an error has occurred.
At operation 650, after the electronic device determines that a valid ticket is associated with the identity, the electronic device may allow access. The electronic device may allow access by controlling an access control mechanism, such as a gate arm, a door, a turnstile, and/or any other device operable to control access.
At operation 660, the electronic device may update the ticket status. For example, the electronic device may update the cached identity information and/or transmit a notification to an identity system device indicating that the ticket has been used. The update may also involve other information, such as a location where the ticket was used, a person who used the ticket, and/or other such information.
Although the example method 600 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
For example, the method 600 is illustrated and described as allowing access or not based on whether or not valid ticket information is indicated in cached identity information. However, it is understood that this is an example. In some implementations, a rewards account may be indicated in the cached identity information that entitles the person to a free or discounted product or service based on use of the ticket. In such implementations, the electronic device may automatically dispense the good or service, provide a voucher for the good or service, transmit a notification regarding the good or service (such as to a device that provides the good or service, to a mobile computing device carried by the person, and so on).
In various implementations, the cached identity information may indicate that the person has the option to upgrade to a higher ticket level (such as a box seat when the valid ticket was for general admission and so on) and the electronic device may prompt the person and/or transmit a notification regarding the option to upgrade. In some examples of such implementations, the cached identity information may indicate that the person has configured default options in such a case and does not want to be bothered by upsells. In such an example, the electronic device may perform the upgrade and/or transmit notifications to accomplish the upgrade automatically according to the default options indicated in the cached identity information. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
In various examples, this example method 600 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the ticket station 501 of FIG. 5.
FIG. 7 depicts a fourth example identification system 700 that uses a local cache for performing identifications. In this example, the identification system 700 may be an automated controlled access building 701. The automated controlled access building 701 may include a biometric reader device 713 and an access control mechanism 740. The automated controlled access building 701 may obtain a digital representation of a biometric using the biometric reader device 713, determine an identity by comparing the digital representation of the biometric to cached biometric identification information, and allow access by controlling the access control mechanism 740 if information in cached identity information associated with the identity indicates that the person 703 has permission to enter the automated controlled access building 701.
For example, the biometric reader device 713 is illustrated as a fingerprint scanner and the access control mechanism 740 is illustrated as an automated door. The fingerprint scanner may obtain an image of the person's fingerprint, determine an identity by comparing the image to cached fingerprint images, and control the automated door to allow the person 703 inside if the person 703 has permission to enter the automated controlled access building 701.
FIG. 8 depicts a flow chart illustrating a third example method 800 for using a local cache to perform identifications. This method 800 may be performed by the systems 200, 700 of FIGS. 2 and/or 7.
At operation 810, an electronic device (such as the local electronic device 201 of FIG. 2 and/or the automated controlled access building 701 of FIG. 7) may obtain a fingerprint. At operation 820, the electronic device may compare the fingerprint to stored fingerprint data that is associated with stored identity information. At operation 830, the electronic device may determine whether or not an identity can be determined by matching the fingerprint to stored (or cached) fingerprint data that is associated with stored (or cached) identity information. If so, the flow may proceed to operation 840. Otherwise, the flow proceeds to operation 870.
At operation 840, after the electronic device determines the identity, the electronic device may determine whether or not stored identity information associated with the identity indicates to allow access. If so, the flow may proceed to operation 850. Otherwise, the flow may proceed to operation 890 where the electronic device determines that an error has occurred.
At operation 850, after the electronic device determines that stored identity information associated with the identity indicates to allow access, the electronic device may allow access. Allowing access may include controlling an access control mechanism. The flow may then may proceed to operation 860 where the electronic device may delete the fingerprint.
At operation 870, after the electronic device determines that the identity cannot be determined by matching the fingerprint to stored fingerprint data, the electronic device may contact a main gallery. The main gallery may be fingerprint data and identity information stored and maintained by an identity system device from which the stored fingerprint data and stored identity information were derived. Contacting the main gallery may include transmitting a digital representation of the fingerprint, such as a hash or other representation. The flow may then proceed to operation 880 where the electronic device determines whether or not a match is received from the main gallery. In the case of a match, the electronic device may receive an identity from the main gallery, identity information associated with the identity, and so on. If so, the flow may proceed to operation 840. Otherwise, the flow proceeds to operation 890 where the electronic device may determine that an error has occurred.
Although the example method 800 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
For example, operation 860 is illustrated and described as deleting the fingerprint. This may protect the privacy of the fingerprint by not storing the fingerprint once the electronic device no longer needs the fingerprint. This may also reduce electronic device storage requirements. However, it is understood that this is an example. In other implementations, the electronic device may delete, erase, or otherwise flush a variety of other data as well (such as a portion of the stored fingerprint data and/or the stored identity information that corresponds to the fingerprint, data related to whether or not access was allowed, and so on). Various configurations are possible and contemplated without departing from the scope of the present disclosure.
In various examples, this example method 800 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the automated controlled access building 701 of FIG. 7.
FIG. 9 depicts a fifth example identification system 900 that uses a local cache for performing identifications. In this example, the identification system 900 may be an individual point of sale device 901 on an airplane. The individual point of sale device 901 may include a biometric reader device 913. A person 903 may use the individual point of sale device 901 to request goods and/or services, such as an alcoholic beverage. The individual point of sale device 901 may obtain a digital representation of a biometric using the biometric reader device 913, determine an identity by comparing the digital representation of the biometric to cached biometric identification information, and arrange for a request to be fulfilled or denied based on information in cached identity information associated with the identity.
For example, the individual point of sale device 901 may cache identity information and biometric identification information for all of the passengers on a plane's flight manifest. As everyone on a plane should be on the plane's flight manifest, the individual point of sale device 901 may be able to minimize the amount of identity information and biometric identification information to be cached in order to operate.
The individual point of sale device 901 may then receive a request for an alcoholic beverage from the person 903, use the biometric reader device 913 (shown as a camera that obtains a facial image, an iris image, a retina image, and so on) to obtain a digital representation of a biometric, identify the person 903, determine a verified age for the person from the cached identity information associated with the person's identity, and arrange for the request to be fulfilled (such as by signaling cabin crew to fulfill the request, dispensing the alcoholic beverage, and so on) if the person's verified age meets a legal threshold (such as twenty one years of age, eighteen years of age, and so on) for the consumption of alcoholic beverages. The individual point of sale device 901 may also determine payment information associated with the person's identity and process payment using the payment information. This may enable the individual point of sale device 901 to verify age and/or payment for requested alcoholic beverages during a flight even if the individual point of sale device 901 cannot currently communicate with a central database storing age and/or payment information.
By way of another example, one or more electronic devices on an aircraft or at another location may cache identification information and/or identity information for one or more pilots and/or other staff scheduled to use and/or work on the aircraft. Should a person report as staff whose identification information and/or identity information is not cached, additional security procedures may be performed to ensure the person is validly assigned to use and/or work on the aircraft. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
FIG. 10 depicts a flow chart illustrating a fourth example method 1000 for using a local cache to perform identifications. This method 1000 may be performed by the systems 200, 900 of FIGS. 2 and/or 9.
At operation 1010, an electronic device (such as the local electronic device 201 of FIG. 2 and/or the individual point of sale device 901 of FIG. 9) may cache biometric data and identity information for a passenger list of a flight. The flow may then proceed to operation 1020 where the electronic device may determine whether or not a digital representation of a biometric is received. If not, the flow may return to operation 1020 where the electronic device again determines whether or not a digital representation of a biometric is received. Otherwise, the flow may proceed to operation 1030.
At operation 1030, the electronic device may use the digital representation of the biometric to determine an identity. The flow may then proceed to operation 1040 where the electronic device determines whether or not information in the cached identity information associated with the identity indicates that the transaction is allowed (such as whether or not the cached identity information indicates that a verified age of the person meets or exceeds a threshold age for the transaction, whether or not payment information is available to use for the transaction, and so on). If not, the flow may proceed to operation 1080 where the electronic device determines that an error has occurred. Otherwise, the flow may proceed to operation 1050.
At operation 1050, the electronic device may determine to allow the transaction. The flow may then proceed to operation 1060 where the electronic device may process payment for the transaction. Next, the flow may proceed to operation 1070 where the electronic device may delete all of the biometric data and the identity information after the flight is complete.
Although the example method 1000 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
For example, the method 1000 is illustrated and described in the context of a flight. However, it is understood that this is an example. In various implementations, the method 1000 may be used in other contexts, such as a train trip, a bus ride, an assigned seat at an event venue, and so on. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
By way of another example, the method 1000 is illustrated and described as both determining whether or not the transaction is allowed and processing payment. However, it is understood that this is an example. In various implementations, one or more of these features may be performed without performing the other. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
In various examples, this example method 1000 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the individual point of sale device 901 of FIG. 9.
FIG. 11 depicts a sixth example identification system 1100 that uses a local cache for performing identifications. In this example, the identification system 1100 may be a security screening device 1101 at an airport. The security screening device 1101 may cache biometric identification information and identity information for all of the people who have flights scheduled for a period of time, such as two days, from an airport where the screening device is located. In some implementations, the people who have flights scheduled for the time period may be determined using one or more flight manifests.
The security screening device 1101 may include a biometric reader device 1113 that the security screening device 1101 may use to obtain a digital representation of a biometric from a person 1103. The security screening device 1101 may determine an identity by comparing the digital representation of the biometric to cached biometric identification information and allow access if information in cached identity information associated with the identity indicates that the person 1103 has a ticket for a flight from the airport during the time period.
In some implementations, the security screening device 1101 may delete the digital representation of the biometric and/or the corresponding cached biometric identification information and/or identity information after the person 1103 is allowed access. This may minimize storage requirements for the security screening device 1101 as the person has already been allowed access.
In some situations, the person 1103 may exit after having passed the security screening device 1101 prior to their flight and attempt to reenter. In such an example, as the security screening device 1101 may have already deleted the biometric identification information and/or identity information corresponding to the person 1103, the security screening device 1101 may fail to identify the person 1103 using the cached biometric identification information and/or identity information. In such a situation, the security screening device 1101 may communicate with an identity system device from which the biometric identification information and/or identity information was originally cached to identify the person. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
In another example, the security screening device 1101 may cache a portion of one or more third party databases and/or other electronic devices that relate to security screening. For example, the security screening device 1101 may cache a portion of a federal no fly database and/or other blacklist, criminal watch list, and so on. In some implementations, the security screening device 1101 may cache the portion of such a third party database and/or other electronic device associated with all of the people who have flights scheduled for a period of time. In this way, the security screening device 1101 may be able to use the information from the third party database and/or other electronic device without actually currently communicating with the third party database and/or other electronic device. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
FIG. 12 depicts a flow chart illustrating a fifth example method 1200 for using a local cache to perform identifications. This method 1200 may be performed by the systems 200, 1100 of FIGS. 2 and/or 11.
At operation 1210, an electronic device (such as the local electronic device 201 of FIG. 2 and/or the security screening device 1101 of FIG. 11) may cache biometric data and identity information based on one or more flight manifests. For example, biometric data and identity information for people who have flights from a particular airport within a particular time period may be cached using one or more flight manifests.
At operation 1220, the electronic device may determine whether or not a digital representation of a biometric is received. If not, the flow may return to operation 1220 where the electronic device may again determine whether or not a digital representation of a biometric is received. Otherwise, the flow may proceed to operation 1230.
At operation 1230, the electronic device may determine whether or not there is a match between the digital representation of the biometric and cached biometric data and identity information. If not, the flow may proceed to operation 1260 where the electronic device may determine that an error has occurred. Otherwise the flow may proceed to operation 1240.
At operation 1240, the electronic device may allow access. The flow may then proceed to operation 1250 where the electronic device may delete the digital representation of the biometric and the corresponding cached biometric data and the identity information.
Although the example method 1200 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
For example, operation 1250 illustrates and describes the electronic device deleting the digital representation of the biometric and the corresponding cached biometric data and the identity information. However, it is understood that this is an example. In some implementations, the electronic device may omit deleting one or more of the digital representation of the biometric, the corresponding cached biometric data, and/or the corresponding identity information. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
In various examples, this example method 1200 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the security screening device 1101 of FIG. 11.
FIG. 13 depicts a seventh example identification system 1300 that uses a local cache for performing identifications. In this example, the identification system 1300 may be a vehicle 1301. The vehicle 1301 may include a biometric reader device 1313, which is illustrated as a microphone that obtains a voiceprint for a person 1303. The vehicle 1301 may obtain the voiceprint (and/or another digital representation of a biometric) using the biometric reader device 1313 (and/or other biometric reader device), determine an identity by comparing the voice print to cached biometric identification information, and allow operation of the vehicle 1301 if the person 1303 has permission to operate the vehicle 1301 as specified in identity information cached by the vehicle 1301.
In various implementations, a group of people may have one or more sets of permissions with respect to operating the vehicle 1301. In such implementations, the vehicle 1301 may cache biometric identification information and identity information for each of the group of people.
In some implementations, the identity information may specify one or more configuration options for the vehicle 1301 for the person 1303. For example, such configuration options may include a seat position, vehicle temperature, entertainment system settings, control settings, time and/or location of permitted operation, and so on. In such implementations, the vehicle 1301 may control one or more components according to the configuration options upon determining the identity.
FIG. 14 depicts a flow chart illustrating a sixth example method 1400 for using a local cache to perform identifications. This method 1400 may be performed by the systems 200, 1300 of FIGS. 2 and/or 13.
At operation 1401, an electronic device (such as the local electronic device 201 of FIG. 2 and/or the vehicle 1301 of FIG. 13) operates. The flow may proceed to operation 1402 where the electronic device determines whether or not a digital representation of a biometric is received. If not, the flow may proceed to operation 1401 where the electronic device continues to operate. Otherwise, the flow may proceed to operation 1403.
At operation 1403, the electronic device may determine whether or not the digital representation of the biometric matches cached biometric identification information. If so, the flow may proceed to operation 1404. Otherwise, the flow may proceed to operation 1409.
At operation 1404, after the electronic device determines that the digital representation of the biometric matches the cached biometric identification information, the electronic device may determine whether or not cached identity information associated with the matched cached biometric identification information indicates that use is authorized. If not, the flow may proceed to operation 1412 where the electronic device may determine that an error has occurred. Otherwise, the flow may proceed to operation 1405.
At operation 1405, the electronic device may allow use of the electronic device. The flow may then proceed to operation 1406 where the electronic device may determine whether or not use is finished. If so, the flow may return to operation 1401 where the electronic device continues to operate. Otherwise, the flow may proceed to operation 1407.
At operation 1407, the electronic device may determine whether or not to update identity information based on the use. In some implementations, the electronic device may update identity information when the use modifies the identity information. For example, the identity information may indicate that use of the electronic device is authorized when a person has not previously misused the electronic device (such as where the electronic device is a vehicle and misuse of the vehicle involves driving outside speed limits, not obeying traffic signals, striking other vehicles, and so on). As such, if the use of the electronic device constitutes misuse, the electronic device may update the identity information to indicate that use is no longer authorized. If the electronic device determines to update the identity information, the flow may proceed to operation 1408 where the electronic device may update the identity information before the flow returns to operation 1405. Otherwise, the flow may proceed directly to operation 1405.
At operation 1409, after the electronic device determines that the digital representation of the biometric does not match the cached biometric identification information, the electronic device may obtain identity information associated with digital representation of the biometric. The electronic device may obtain the identity information by communicating with an identity service device. The flow may then proceed to operation 1410 where the electronic device determines whether or not to cache the identity information and/or the digital representation of the biometric. For example, the electronic device may determine to cache the identity information and/or the digital representation of the biometric when the identity information indicates that the digital representation of the biometric is associated with a person who is a permitted user of the electronic device. If so, the flow may proceed to operation 1411 where the electronic device may cache the identity information and/or the digital representation of the biometric before the flow proceeds to operation 1404. Otherwise, the flow may proceed directly to operation 1404.
Although the example method 1400 is illustrated and described as including particular operations performed in a particular order, it is understood that this is an example. In various implementations, various orders of the same, similar, and/or different operations may be performed without departing from the scope of the present disclosure.
For example, the method 1400 is illustrated and described as continuing to allow use after updating the identity information based on the use of the electronic device. However, in some implementations, updating the identity information based on use of the electronic device may remove authorization to use the electronic device. In such an example, the electronic device may instead cease allowing operation. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
In various examples, this example method 1400 may be implemented as a group of interrelated software modules or components that perform various functions discussed herein. These software modules or components may be executed within a cloud network and/or by one or more computing devices, such as the local electronic device 201 of FIG. 2 and/or the vehicle 1301 of FIG. 13.
Although the present disclosure is illustrated and described in the context of caching information from a central system at local electronic devices and updating the central system for actions performed by the local electronic devices, it is understood that this is an example. In some implementations, the central system may include a number of electronic devices that operate in a cooperative computing arrangement to centrally store information. In such implementations, one or more devices in the central system may receive updates from the local electronic devices and subsequently use the techniques disclosed herein to provide those updates to other devices in the central system, such as examples where devices are located in each time zone and communicate updates received from local electronic devices to devices in an adjacent time zone upon the occurrence of various conditions, such as hourly. Various configurations are possible and contemplated without departing from the scope of the present disclosure.
Although the above illustrates and describes a number of embodiments, it is understood that these are examples. In various implementations, various techniques of individual embodiments may be combined without departing from the scope of the present disclosure.
As described above and illustrated in the accompanying figures, the present disclosure relates to an identification system that uses a local cache for performing identifications. An identity system device may store identity information and identification information. One or more electronic devices may store a cache of a portion of the identity information and a part of the identification information. Such an electronic device may allow controlled access to the cached identity information using the cached identification information. For example, the cached identification information may include cached biometric identification information. The electronic device may receive user input, determine an identity by comparing the user input to the cached identification information, and perform an action using information in the cached identity information that is associated with the identity. In this way, the electronic device performs identifications locally without requiring communication with the identity system device but also uses the identity system device to centrally store and maintain the identity information and the identification information that is used to protect the identity information.
The present disclosure recognizes that biometric and/or other personal data is owned by the person from whom such biometric and/or other personal data is derived. This data can be used to the benefit of those people. For example, biometric data may be used to conveniently and reliably identify and/or authenticate the identity of people, access securely stored financial and/or other information associated with the biometric data, and so on. This may allow people to avoid repeatedly providing physical identification and/or other information.
The present disclosure further recognizes that the entities who collect, analyze, store, and/or otherwise use such biometric and/or other personal data should comply with well-established privacy policies and/or privacy practices. Particularly, such entities should implement and consistently use privacy policies and practices that are generally recognized as meeting or exceeding industry or governmental requirements for maintaining security and privately maintaining biometric and/or other personal data, including the use of encryption and security methods that meets or exceeds industry or government standards. For example, biometric and/or other personal data should be collected for legitimate and reasonable uses and not shared or sold outside of those legitimate uses. Further, such collection should occur only after receiving the informed consent. Additionally, such entities should take any needed steps for safeguarding and securing access to such biometric and/or other personal data and ensuring that others with access to the biometric and/or other personal data adhere to the same privacy policies and practices. Further, such entities should certify their adherence to widely accepted privacy policies and practices by subjecting themselves to appropriate third party evaluation.
Additionally, the present disclosure recognizes that people may block the use of, storage of, and/or access to biometric and/or other personal data. Entities who typically collect, analyze, store, and/or otherwise use such biometric and/or other personal data should implement and consistently prevent any collection, analysis, storage, and/or other use of any biometric and/or other personal data blocked by the person from whom such biometric and/or other personal data is derived.
In the present disclosure, the methods disclosed may be implemented as sets of instructions or software readable by a device. Further, it is understood that the specific order or hierarchy of steps in the methods disclosed are examples of sample approaches. In other embodiments, the specific order or hierarchy of steps in the method can be rearranged while remaining within the disclosed subject matter. The accompanying method claims present elements of the various steps in a sample order, and are not necessarily meant to be limited to the specific order or hierarchy presented.
The described disclosure may be provided as a computer program product, or software, that may include a non-transitory machine-readable medium having stored thereon instructions, which may be used to program a computer system (or other electronic devices) to perform a process according to the present disclosure. A non-transitory machine-readable medium includes any mechanism for storing information in a form (e.g., software, processing application) readable by a machine (e.g., a computer). The non-transitory machine-readable medium may take the form of, but is not limited to, a magnetic storage medium (e.g., floppy diskette, video cassette, and so on); optical storage medium (e.g., CD-ROM); magneto-optical storage medium; read only memory (ROM); random access memory (RAM); erasable programmable memory (e.g., EPROM and EEPROM); flash memory; and so on.
The foregoing description, for purposes of explanation, used specific nomenclature to provide a thorough understanding of the described embodiments. However, it will be apparent to one skilled in the art that the specific details are not required in order to practice the described embodiments. Thus, the foregoing descriptions of the specific embodiments described herein are presented for purposes of illustration and description. They are not targeted to be exhaustive or to limit the embodiments to the precise forms disclosed. It will be apparent to one of ordinary skill in the art that many modifications and variations are possible in view of the above teachings.

Claims (20)

What is claimed is:
1. An identification system that uses a local cache for performing identifications, comprising:
an identity system device that stores identity information and biometric identification information; and
an electronic device, comprising:
a biometric reader device;
a communication unit;
a non-transitory storage medium that stores instructions; and
a processor that executes the instructions to:
receive from the identity system device, using the communication unit, an identity information cache that comprises a portion of the identity information from the identity system device;
receive from the identity system device, using the communication unit, a biometric identification information cache that comprises a part of the biometric identification information;
obtain a digital representation of a biometric via the biometric reader device;
determine an identity by comparing the digital representation of the biometric to the biometric identification information cache;
perform an action using information in the identity information cache that is associated with the identity; and
transmit a notification to the identity system device, using the communication unit, to update based on the action a subset of the identity information associated with the identity.
2. The identification system of claim 1, wherein the identity system device:
determines parameters for identities to cache;
selects the portion of the identity information and the part of the biometric identification information according to the parameters; and
transmits the portion of the identity information and the part of the biometric identification information to the electronic device.
3. The identification system of claim 2, wherein the parameters include a list of ticket holders or a flight manifest.
4. The identification system of claim 1, wherein:
the digital representation of the biometric is a first digital representation of a first biometric;
the identity is a first identity; and
the processor:
obtains a second digital representation of a second biometric;
determines the second digital representation of the second biometric does not have a match in the biometric identification information cache; and
determines a second identity by transmitting the second digital representation of the second biometric to the identity system device.
5. The identification system of claim 4, wherein:
the information is first information; and
the processor receives second information in the identity information that is associated with the second identity from the identity system device.
6. The identification system of claim 1, wherein the processor deletes the digital representation of the biometric upon determining the identity.
7. The identification system of claim 1, wherein a communication link between the electronic device and the identity system device is unavailable while the processor determines the identity.
8. An electronic device, comprising:
a biometric reader device;
a communication unit;
a non-transitory storage medium that stores instructions; and
a processor that executes the instructions to:
cache identity information and biometric identification information received, using the communication unit, from an identity system device of an identification system that uses a local cache for performing identifications;
obtain a digital representation of a biometric via the biometric reader device;
determine an identity by comparing the digital representation of the biometric to the biometric identification information;
perform an action using a portion of the identity information that is associated with the identity; and
instruct the identity system device based on the action, using the communication unit, to update a subset of the identity information associated with the identity.
9. The electronic device of claim 8, wherein the action comprises allowing access.
10. The electronic device of claim 9, wherein the electronic device further comprises an access control mechanism and the processor allows the access by controlling the access control mechanism.
11. The electronic device of claim 8, wherein the identity information includes a verified age.
12. The electronic device of claim 8, wherein the identity information includes payment information.
13. The electronic device of claim 8, wherein the biometric reader device comprises at least one of a fingerprint scanner, an optical fingerprint scanner, a phosphorescent fingerprint scanner, a camera, an image sensor, or a microphone.
14. The electronic device of claim 8, wherein the digital representation of the biometric comprises a digital representation of at least one of a fingerprint, a voiceprint, a facial image, a retina image, an iris image, or a gait.
15. An electronic device, comprising:
a biometric reader device;
a communication unit;
a non-transitory storage medium that stores instructions; and
a processor that executes the instructions to:
determine parameters for identities to cache;
obtain from an identity system device of an identity system that uses a local cache for performing identifications a subset of identity information and biometric identification information stored by the identity system device, using the communication unit, that corresponds to the parameters;
store the subset of the identity information and the biometric identification information in the non-transitory storage medium;
obtain a digital representation of a biometric via the biometric reader device; and
determine an identity by comparing the digital representation of the biometric to the biometric identification information of the subset of the identity information and the biometric identification information.
16. The electronic device of claim 15, wherein the processor:
performs an action using information in the identity information of the subset of the identity information and the biometric identification information corresponding to the identity; and
deletes the subset of the identity information and the biometric identification information after performing the action.
17. The electronic device of claim 16, wherein:
the action comprises allowing entrance based on a ticket; and
the processor updates a status of the ticket in the identity information of the subset of the identity information and the biometric identification information based on the entrance.
18. The electronic device of claim 15, wherein the parameters include permitted entrants.
19. The electronic device of claim 15, wherein the electronic device is a component of a vehicle.
20. The electronic device of claim 19, wherein the parameters include permitted vehicle operators.
US16/679,529 2018-12-28 2019-11-11 Local cache-based identification system Active 2040-03-09 US11321989B2 (en)

Priority Applications (6)

Application Number Priority Date Filing Date Title
US16/679,529 US11321989B2 (en) 2018-12-28 2019-11-11 Local cache-based identification system
US17/224,616 US11436888B2 (en) 2018-12-28 2021-04-07 Local cache-based identification system
US17/704,314 US11756364B2 (en) 2018-12-28 2022-03-25 Local cache-based identification system
US17/877,957 US11756365B2 (en) 2018-12-28 2022-07-31 Local cache-based identification system
US18/223,764 US20230360462A1 (en) 2018-12-28 2023-07-19 Local cache-based identification system
US18/380,793 US20240046732A1 (en) 2018-12-28 2023-10-17 Local cache-based identification system

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201862785721P 2018-12-28 2018-12-28
US16/679,529 US11321989B2 (en) 2018-12-28 2019-11-11 Local cache-based identification system

Related Child Applications (2)

Application Number Title Priority Date Filing Date
US17/224,616 Continuation US11436888B2 (en) 2018-12-28 2021-04-07 Local cache-based identification system
US17/704,314 Continuation US11756364B2 (en) 2018-12-28 2022-03-25 Local cache-based identification system

Publications (2)

Publication Number Publication Date
US20200211312A1 US20200211312A1 (en) 2020-07-02
US11321989B2 true US11321989B2 (en) 2022-05-03

Family

ID=71124395

Family Applications (6)

Application Number Title Priority Date Filing Date
US16/679,529 Active 2040-03-09 US11321989B2 (en) 2018-12-28 2019-11-11 Local cache-based identification system
US17/224,616 Active 2039-11-18 US11436888B2 (en) 2018-12-28 2021-04-07 Local cache-based identification system
US17/704,314 Active US11756364B2 (en) 2018-12-28 2022-03-25 Local cache-based identification system
US17/877,957 Active US11756365B2 (en) 2018-12-28 2022-07-31 Local cache-based identification system
US18/223,764 Pending US20230360462A1 (en) 2018-12-28 2023-07-19 Local cache-based identification system
US18/380,793 Pending US20240046732A1 (en) 2018-12-28 2023-10-17 Local cache-based identification system

Family Applications After (5)

Application Number Title Priority Date Filing Date
US17/224,616 Active 2039-11-18 US11436888B2 (en) 2018-12-28 2021-04-07 Local cache-based identification system
US17/704,314 Active US11756364B2 (en) 2018-12-28 2022-03-25 Local cache-based identification system
US17/877,957 Active US11756365B2 (en) 2018-12-28 2022-07-31 Local cache-based identification system
US18/223,764 Pending US20230360462A1 (en) 2018-12-28 2023-07-19 Local cache-based identification system
US18/380,793 Pending US20240046732A1 (en) 2018-12-28 2023-10-17 Local cache-based identification system

Country Status (1)

Country Link
US (6) US11321989B2 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CA3195818A1 (en) 2017-07-28 2019-01-31 Alclear, Llc Intelligent gallery management for biometrics
US11321989B2 (en) 2018-12-28 2022-05-03 Alclear, Llc Local cache-based identification system
CN113014543A (en) * 2020-12-28 2021-06-22 腾讯科技(深圳)有限公司 Identity recognition system, method, apparatus, computer device and storage medium
US11527101B1 (en) 2021-08-11 2022-12-13 Alclear, Llc Biometric gallery management using wireless identifiers
US20230153242A1 (en) * 2021-11-12 2023-05-18 Alclear, Llc Biometric caching

Citations (48)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6119096A (en) 1997-07-31 2000-09-12 Eyeticket Corporation System and method for aircraft passenger check-in and boarding using iris recognition
US20040172403A1 (en) 2002-11-26 2004-09-02 Steele Rhea L. Method and system for automated tracking of persons at remote activities
US20040221303A1 (en) 2001-11-20 2004-11-04 Starz Encore Group Llc Parental controls using view limits
US20060083408A1 (en) * 1998-02-09 2006-04-20 Ned Hoffman Biometric tokenless electronic rewards system and method
US20060279422A1 (en) * 1999-09-28 2006-12-14 Clifford Sweatte Method and system for airport security
US20070206839A1 (en) 2006-03-03 2007-09-06 Hanna Keith J Salable searching of biometric databases using dynamic selection of data subsets
US20080126809A1 (en) 2006-11-03 2008-05-29 Rothschild Trust Holdings, Llc System and method for positively establishing identity of an individual with an electronic information carrier
US20100312763A1 (en) 2007-12-21 2010-12-09 Daon Holdings Limited Generic biometric filter
US20100316262A1 (en) 2009-06-12 2010-12-16 Glory Ltd. Biometric matching system and biometric matching method
US20120019379A1 (en) 2009-06-22 2012-01-26 Mourad Ben Ayed Systems for three factor authentication challenge
US20130002399A1 (en) * 2010-03-23 2013-01-03 Kaba Gallenschuetz Gmbh Access control device
US20130036309A1 (en) 2009-12-15 2013-02-07 Thomas Andreas Maria Kevenaar System and method for verifying the identity of an individual by employing biometric data features associated with the individual
US20130036480A1 (en) 2011-08-04 2013-02-07 Anderson J Chance System and method for sharing of data securely between electronic devices
US8381969B1 (en) 2011-04-28 2013-02-26 Amazon Technologies, Inc. Method and system for using machine-readable codes to perform a transaction
US20130051630A1 (en) 2011-08-30 2013-02-28 The Mitre Corporation Accelerated Comparison Using Scores From Coarse and Fine Matching Processes
US8423462B1 (en) 2009-05-01 2013-04-16 Amazon Technologies, Inc. Real-time mobile wallet server
US8521131B1 (en) 2010-03-23 2013-08-27 Amazon Technologies, Inc. Mobile device security
US20130251216A1 (en) 2012-03-23 2013-09-26 Microsoft Corporation Personal Identification Combining Proximity Sensing with Biometrics
US20140189720A1 (en) 2012-12-27 2014-07-03 Alex Terrazas Methods and apparatus to determine engagement levels of audience members
US20140314283A1 (en) 2013-04-16 2014-10-23 Imageware Systems, Inc. Multi-modal biometric database searching methods
US8965170B1 (en) 2012-09-04 2015-02-24 Google Inc. Automatic transition of content based on facial recognition
US20150294515A1 (en) 2013-05-23 2015-10-15 Bytemark, Inc. Systems and methods for electronic ticket validation using proximity detection for two or more tickets
US9166961B1 (en) 2012-12-11 2015-10-20 Amazon Technologies, Inc. Social networking behavior-based identity system
US9202105B1 (en) 2012-01-13 2015-12-01 Amazon Technologies, Inc. Image analysis for user authentication
US20160055327A1 (en) 2014-08-20 2016-02-25 Educational Testing Service Systems and Methods for Multi-Factor Authentication for Administration of a Computer-Based Test
US9324098B1 (en) 2008-07-22 2016-04-26 Amazon Technologies, Inc. Hosted payment service system and method
US20160189063A1 (en) 2014-12-31 2016-06-30 Stubhub, Inc. Systems and methods for event admissions based on fingerprint recognition
US20160269411A1 (en) 2015-03-12 2016-09-15 Ronen MALACHI System and Method for Anonymous Biometric Access Control
US20160343187A1 (en) * 2015-05-20 2016-11-24 Sensormatic Electronics, LLC Frictionless Access System for Public Access Point
US9607138B1 (en) 2013-12-18 2017-03-28 Amazon Technologies, Inc. User authentication and verification through video analysis
US9681350B1 (en) 2015-09-15 2017-06-13 Sprint Spectrum L.P. Differential routing of voice handover traffic and non-voice handover traffic in response to congestion on an inter-base-station interface
US20170188103A1 (en) 2015-12-29 2017-06-29 Le Holdings (Beijing) Co., Ltd. Method and device for video recommendation based on face recognition
US20170318141A1 (en) 2016-04-29 2017-11-02 Samuel Philip Gerace Cloud-based contacts management
US9836642B1 (en) 2012-12-18 2017-12-05 Amazon Technologies, Inc. Fraud detection for facial recognition systems
US20180005160A1 (en) 2016-06-30 2018-01-04 Microsoft Technology Licensing, Llc Determining and enhancing productivity
US20180007060A1 (en) 2016-06-30 2018-01-04 Amazon Technologies, Inc. Multi-Factor Authentication to Access Services
US9967250B2 (en) 2011-10-19 2018-05-08 Amazon Technologies, Inc. Confidence-based authentication
US10027662B1 (en) 2016-12-06 2018-07-17 Amazon Technologies, Inc. Dynamic user authentication
US10055740B2 (en) 2011-06-27 2018-08-21 Amazon Technologies, Inc. Payment selection and authorization
US10104181B1 (en) 2015-12-30 2018-10-16 Amazon Technologies, Inc. Secure context-based group collaboration and communication
US10108791B1 (en) 2015-03-19 2018-10-23 Amazon Technologies, Inc. Authentication and fraud detection based on user behavior
US20190050631A1 (en) 2016-02-26 2019-02-14 Nec Corporation Face recognition system, face recognition method, and storage medium
US10243945B1 (en) 2013-10-28 2019-03-26 Amazon Technologies, Inc. Managed identity federation
US20200028971A1 (en) 2015-12-28 2020-01-23 Amazon Technologies, Inc. Remote access control
US10929661B1 (en) 2013-12-19 2021-02-23 Amazon Technologies, Inc. System for user identification
US20210201061A1 (en) 2017-07-28 2021-07-01 Alclear, Llc Intelligent gallery management for biometrics
US20210225116A1 (en) 2018-12-28 2021-07-22 Alclear, Llc Local cache-based identification system
US11151481B1 (en) 2016-09-28 2021-10-19 Amazon Technologies, Inc. Ticketless entry and tracking

Patent Citations (65)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6119096A (en) 1997-07-31 2000-09-12 Eyeticket Corporation System and method for aircraft passenger check-in and boarding using iris recognition
US20060083408A1 (en) * 1998-02-09 2006-04-20 Ned Hoffman Biometric tokenless electronic rewards system and method
US20060279422A1 (en) * 1999-09-28 2006-12-14 Clifford Sweatte Method and system for airport security
US20040221303A1 (en) 2001-11-20 2004-11-04 Starz Encore Group Llc Parental controls using view limits
US20040172403A1 (en) 2002-11-26 2004-09-02 Steele Rhea L. Method and system for automated tracking of persons at remote activities
US20070206839A1 (en) 2006-03-03 2007-09-06 Hanna Keith J Salable searching of biometric databases using dynamic selection of data subsets
US20080126809A1 (en) 2006-11-03 2008-05-29 Rothschild Trust Holdings, Llc System and method for positively establishing identity of an individual with an electronic information carrier
US20100312763A1 (en) 2007-12-21 2010-12-09 Daon Holdings Limited Generic biometric filter
US9324098B1 (en) 2008-07-22 2016-04-26 Amazon Technologies, Inc. Hosted payment service system and method
US8744966B1 (en) 2009-05-01 2014-06-03 Amazon Technologies, Inc. Real-time mobile wallet server
US8423462B1 (en) 2009-05-01 2013-04-16 Amazon Technologies, Inc. Real-time mobile wallet server
US10235669B2 (en) 2009-05-01 2019-03-19 Amazon Technologies, Inc. Real-time mobile wallet server
US20100316262A1 (en) 2009-06-12 2010-12-16 Glory Ltd. Biometric matching system and biometric matching method
US20120019379A1 (en) 2009-06-22 2012-01-26 Mourad Ben Ayed Systems for three factor authentication challenge
US20130036309A1 (en) 2009-12-15 2013-02-07 Thomas Andreas Maria Kevenaar System and method for verifying the identity of an individual by employing biometric data features associated with the individual
US9681359B2 (en) 2010-03-23 2017-06-13 Amazon Technologies, Inc. Transaction completion based on geolocation arrival
US8521131B1 (en) 2010-03-23 2013-08-27 Amazon Technologies, Inc. Mobile device security
US9723131B1 (en) 2010-03-23 2017-08-01 Amazon Technologies, Inc. Mobile device security
US20130002399A1 (en) * 2010-03-23 2013-01-03 Kaba Gallenschuetz Gmbh Access control device
US9609577B1 (en) 2010-03-23 2017-03-28 Amazon Technologies, Inc. Mobile device security
US9107064B1 (en) 2010-03-23 2015-08-11 Amazon Technologies, Inc. Mobile device security
US9386507B1 (en) 2010-03-23 2016-07-05 Amazon Technologies, Inc. Mobile device security
US8381969B1 (en) 2011-04-28 2013-02-26 Amazon Technologies, Inc. Method and system for using machine-readable codes to perform a transaction
US10055740B2 (en) 2011-06-27 2018-08-21 Amazon Technologies, Inc. Payment selection and authorization
US20130036480A1 (en) 2011-08-04 2013-02-07 Anderson J Chance System and method for sharing of data securely between electronic devices
US20130051630A1 (en) 2011-08-30 2013-02-28 The Mitre Corporation Accelerated Comparison Using Scores From Coarse and Fine Matching Processes
US9967250B2 (en) 2011-10-19 2018-05-08 Amazon Technologies, Inc. Confidence-based authentication
US10242364B2 (en) 2012-01-13 2019-03-26 Amazon Technologies, Inc. Image analysis for user authentication
US10108961B2 (en) 2012-01-13 2018-10-23 Amazon Technologies, Inc. Image analysis for user authentication
US9202105B1 (en) 2012-01-13 2015-12-01 Amazon Technologies, Inc. Image analysis for user authentication
US9934504B2 (en) 2012-01-13 2018-04-03 Amazon Technologies, Inc. Image analysis for user authentication
US20160026782A1 (en) 2012-03-23 2016-01-28 Microsoft Technology Licensing, Llc Personal Identification Combining Proximity Sensing with Biometrics
US20130251216A1 (en) 2012-03-23 2013-09-26 Microsoft Corporation Personal Identification Combining Proximity Sensing with Biometrics
US8965170B1 (en) 2012-09-04 2015-02-24 Google Inc. Automatic transition of content based on facial recognition
US9166961B1 (en) 2012-12-11 2015-10-20 Amazon Technologies, Inc. Social networking behavior-based identity system
US20190036939A1 (en) 2012-12-11 2019-01-31 Amazon Technologies, Inc. Social networking behavior-based identity system
US10122727B2 (en) 2012-12-11 2018-11-06 Amazon Technologies, Inc. Social networking behavior-based identity system
US9836642B1 (en) 2012-12-18 2017-12-05 Amazon Technologies, Inc. Fraud detection for facial recognition systems
US20140189720A1 (en) 2012-12-27 2014-07-03 Alex Terrazas Methods and apparatus to determine engagement levels of audience members
US20140314283A1 (en) 2013-04-16 2014-10-23 Imageware Systems, Inc. Multi-modal biometric database searching methods
US20150294515A1 (en) 2013-05-23 2015-10-15 Bytemark, Inc. Systems and methods for electronic ticket validation using proximity detection for two or more tickets
US10243945B1 (en) 2013-10-28 2019-03-26 Amazon Technologies, Inc. Managed identity federation
US9607138B1 (en) 2013-12-18 2017-03-28 Amazon Technologies, Inc. User authentication and verification through video analysis
US10929661B1 (en) 2013-12-19 2021-02-23 Amazon Technologies, Inc. System for user identification
US20160055327A1 (en) 2014-08-20 2016-02-25 Educational Testing Service Systems and Methods for Multi-Factor Authentication for Administration of a Computer-Based Test
US20160189063A1 (en) 2014-12-31 2016-06-30 Stubhub, Inc. Systems and methods for event admissions based on fingerprint recognition
US20160269411A1 (en) 2015-03-12 2016-09-15 Ronen MALACHI System and Method for Anonymous Biometric Access Control
US10108791B1 (en) 2015-03-19 2018-10-23 Amazon Technologies, Inc. Authentication and fraud detection based on user behavior
US20160343187A1 (en) * 2015-05-20 2016-11-24 Sensormatic Electronics, LLC Frictionless Access System for Public Access Point
US10403066B2 (en) * 2015-05-20 2019-09-03 Sensormatic Electronics, LLC Portable device having directional BLE antenna
US20160344091A1 (en) * 2015-05-20 2016-11-24 Sensormatic Electronics, LLC Portable Device having Directional BLE Antenna
US9947155B2 (en) * 2015-05-20 2018-04-17 Sensormatic Electronics, LLC Frictionless access system for public access point
US9681350B1 (en) 2015-09-15 2017-06-13 Sprint Spectrum L.P. Differential routing of voice handover traffic and non-voice handover traffic in response to congestion on an inter-base-station interface
US20200028971A1 (en) 2015-12-28 2020-01-23 Amazon Technologies, Inc. Remote access control
US20170188103A1 (en) 2015-12-29 2017-06-29 Le Holdings (Beijing) Co., Ltd. Method and device for video recommendation based on face recognition
US10104181B1 (en) 2015-12-30 2018-10-16 Amazon Technologies, Inc. Secure context-based group collaboration and communication
US20190050631A1 (en) 2016-02-26 2019-02-14 Nec Corporation Face recognition system, face recognition method, and storage medium
US20170318141A1 (en) 2016-04-29 2017-11-02 Samuel Philip Gerace Cloud-based contacts management
US20180005160A1 (en) 2016-06-30 2018-01-04 Microsoft Technology Licensing, Llc Determining and enhancing productivity
US20180007060A1 (en) 2016-06-30 2018-01-04 Amazon Technologies, Inc. Multi-Factor Authentication to Access Services
US11151481B1 (en) 2016-09-28 2021-10-19 Amazon Technologies, Inc. Ticketless entry and tracking
US10027662B1 (en) 2016-12-06 2018-07-17 Amazon Technologies, Inc. Dynamic user authentication
US20210201061A1 (en) 2017-07-28 2021-07-01 Alclear, Llc Intelligent gallery management for biometrics
US20210264185A1 (en) 2017-07-28 2021-08-26 Alclear, Llc Intelligent gallery management for biometrics
US20210225116A1 (en) 2018-12-28 2021-07-22 Alclear, Llc Local cache-based identification system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Trochu et al., "Managing the Border, Smartly," European and Security Informatics Conference, IEEE, pp. 281-284, Aug. 12, 2013.

Also Published As

Publication number Publication date
US20220375296A1 (en) 2022-11-24
US20210225116A1 (en) 2021-07-22
US20240046732A1 (en) 2024-02-08
US20200211312A1 (en) 2020-07-02
US11436888B2 (en) 2022-09-06
US20230360462A1 (en) 2023-11-09
US11756365B2 (en) 2023-09-12
US11756364B2 (en) 2023-09-12
US20220215710A1 (en) 2022-07-07

Similar Documents

Publication Publication Date Title
US11756364B2 (en) Local cache-based identification system
US11620369B2 (en) Biometric ticketing
US11582228B2 (en) Distributed identity system with local identification
US11775885B2 (en) Interaction between a network identity service and account-based service applications
EP3561706B1 (en) Biometric authentication method, system, and computer program
US10534956B1 (en) Using identity information to facilitate interaction with people moving through areas
US20200211309A1 (en) Dynamic Security System Control Based on Identity
US20190340859A1 (en) Biometric exit with an asset
JP2021531559A (en) Cognitive fraud prevention
US10628665B1 (en) Enhancing capabilities by cooperatively using identity systems and identification databases
JP2023545323A (en) Dynamic and predictive adjustment of payment attributes based on contextual data and metadata

Legal Events

Date Code Title Description
FEPP Fee payment procedure

Free format text: ENTITY STATUS SET TO UNDISCOUNTED (ORIGINAL EVENT CODE: BIG.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

AS Assignment

Owner name: ALCLEAR, LLC, NEW YORK

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:WISNIEWSKI, ROB;REEL/FRAME:051031/0094

Effective date: 20191115

STPP Information on status: patent application and granting procedure in general

Free format text: DOCKETED NEW CASE - READY FOR EXAMINATION

AS Assignment

Owner name: JP MORGAN CHASE BANK, N.A., ILLINOIS

Free format text: SECURITY INTEREST;ASSIGNOR:ALCLEAR, LLC;REEL/FRAME:052279/0692

Effective date: 20200331

STPP Information on status: patent application and granting procedure in general

Free format text: NON FINAL ACTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: NOTICE OF ALLOWANCE MAILED -- APPLICATION RECEIVED IN OFFICE OF PUBLICATIONS

STPP Information on status: patent application and granting procedure in general

Free format text: PUBLICATIONS -- ISSUE FEE PAYMENT VERIFIED

STPP Information on status: patent application and granting procedure in general

Free format text: AWAITING TC RESP, ISSUE FEE PAYMENT VERIFIED

STPP Information on status: patent application and granting procedure in general

Free format text: PUBLICATIONS -- ISSUE FEE PAYMENT VERIFIED

STCF Information on status: patent grant

Free format text: PATENTED CASE

AS Assignment

Owner name: SECURE IDENTITY, LLC, NEW YORK

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:ALCLEAR, LLC;REEL/FRAME:066131/0971

Effective date: 20221018